Enterprise-Grade Security, Made Accessible

We strip away the jargon and speak in terms of business outcomes: Safe, Online, and Resilient

• View Services & Pricing List

Contact Us

Additional Service Details

Transparent Pricing.
Uncompromising Security.

Build your Cyber-Stronghold with our comprehensive, multi-layered IT management and defense architecture

Server Management Packages

_{Enterprise-grade security and automated maintenance for your core infrastructure}

• Additional Cyber Stronghold Details →

Workstation Management Packages

_{Protect every endpoint in your business}

• Additional Cyber Stronghold Details →

Our Story
_{IT Built for Modern Businesses}

Coastal Phoenix wasn't born in a traditional server room. It was born from the changes the world of business has experienced.


The rise of online and remote-first businesses has opened incredible doors for economic growth, but it has also created a new kind of "technical debt." We saw small business owners and "accidental IT managers" in Nova Scotia and beyond struggling to secure a workforce that no longer sits behind a single office firewall.


We created Coastal Phoenix to be the bridge to that new reality.


A "Lightweight IT" Mission for a Digital Era
We believe that your IT shouldn't be a heavy, expensive anchor. It should be a streamlined engine.


By leveraging our Cyber Stronghold model, we provide the high-level infrastructure and security oversight that modern businesses need to thrive without the bloated costs of traditional, on-site service providers.
We focus on your core foundations ensuring your "digital brain" never stops. Using modern, automated tools to keep your "gates" locked 24/7, so you never have to wonder if your backups are actually working.


Proudly Canadian & Truly International
While our heart is in Nova Scotia, our reach is border-less. We're proud to help Canadian and International businesses navigate data sovereignty and local compliance. Providing expert-level remote management of digital infrastructure and security for growing businesses in Canada and beyond.


Why Coastal Phoenix?
Because we live the same remote reality you do. We understand that in today's world, "up-time" and business continuity isn't just about a server in a closet, it’s about your team’s ability to collaborate securely from anywhere in the world.


Whether you're a law firm in Halifax or an accounting firm in London, we provide the vigilant oversight you need to stop worrying about your data and start focusing on your legacy.

• Back

  Master Services Agreement (MSA)


This Master Services Agreement ("MSA") is for any services purchased from Coastal Phoenix Consulting
(Hereinafter "Consultant")I the Client have read and understand that:Consultant and Client are hereinafter referred to individually as a "Party" and collectively as the "Parties."


1. Scope of Services
1.1. Consultant shall provide IT consulting and managed services ("Services") as mutually agreed upon and described in one or more Statements of Work (SOWs). Each SOW shall be in writing, signed by both Parties, and will reference this MSA. In the event of any conflict between this MSA and an SOW, the terms of this MSA shall govern, except for the specific description of Services, deliverables, and fees, which shall be governed by the SOW.1.2. Consultant operates as a fully remote entity. Client acknowledges that Services may be performed from various geographic locations and time zones. All deliverables are provided via secure digital channels, and no on-site presence is required or included under this Agreement1.3. To ensure consistent service quality across a global client base, Consultant utilizes an asynchronous service model. Standard support requests are processed during the Business Hours defined in the applicable SOW (Atlantic Time), regardless of the Consultant's current physical location


2. Term and Termination
2.1. Term: This MSA shall commence on the Effective Date and remain in effect until terminated by either Party.2.2. Termination for Convenience: Either Party may terminate this MSA, or any specific SOW, without cause by providing thirty (30) days written notice to the other Party.2.3. Termination for Cause: Either Party may terminate this MSA or an SOW for a material breach by the other Party, provided that the non-breaching Party has given written notice of the breach and the breach has not been cured within fifteen (15) days.2.4. Effect of Termination: Upon termination, Client shall pay Consultant for all Services performed and expenses incurred up to the effective date of termination.


3. Payment Terms
3.1. Fees: Client agrees to pay Consultant the fees as set forth in the applicable SOW.3.2. Invoicing: Consultant will invoice Client as specified in the SOW (e.g., monthly for retainers, upon project milestones). All invoices are due Net 30 (thirty days) from the date of receipt.3.3. Late Payments: Overdue invoices shall be subject to a late fee of 1.5% per month (18% per annum) or the maximum rate permitted by law, whichever is less.3.4. Taxes: All fees are exclusive of applicable taxes. Client shall be responsible for paying all applicable taxes, including GST/HST, levied on the Services.


4. Confidentiality
Both Parties agree to hold each other's "Confidential Information" in strict confidence and not to disclose it to any third party. Confidential Information includes, but is not limited to, business plans, client data, system configurations, passwords, and the terms of this MSA.


5. Intellectual Property
5.1. Pre-Existing IP: Each Party retains all rights to its pre-existing intellectual property.5.2. Consultant Tools: Consultant retains all rights to any scripts, tools, code, and processes developed by Consultant ("Consultant Tools"), whether developed prior to or during the performance of Services.5.3. Deliverables: Subject to Client's full payment of all fees, Consultant grants Client a non-exclusive, perpetual, worldwide license to use any "Deliverables" (e.g., reports, assessments) specified in an SOW for Client's internal business purposes.


6. Warranties and Disclaimers
6.1. Consultant's Warranty: Consultant warrants that all Services will be performed in a professional and workmanlike manner, consistent with industry standards.6.2. Client's Responsibilities: Client acknowledges and agrees that:
(a) Client is solely responsible for the actions and omissions of its employees and end-users.
(b) Client is solely responsible for its own data, information, and the final selection and implementation of hardware, software, and services.
(c) Client is solely responsible for its own data backup, disaster recovery, and business continuity plans, except where Consultant is explicitly contracted to manage such services via a signed SOW (e.g., a "Managed BDR" SOW).
(d) Client agrees to comply with all security mandates recommended by Consultant, including but not limited to the enforcement of Multi-Factor Authentication (MFA) on all managed accounts.
(e) Client is responsible for maintaining its own appropriate business, data, and cyber liability insurance policies to cover its own risks and potential losses.6.3. Client acknowledges that the Services may be dependent on third-party vendors and cloud service providers (e.g., Microsoft, Pax8, OVHcloud, or Internet Service Providers). Consultant shall not be liable for any service interruptions, data loss, or performance failures caused by such third parties, provided that Consultant has acted with reasonable care in the selection and management of such vendors. Consultant does not warrant that third-party services will be uninterrupted or error-free.6.4. DISCLAIMER: EXCEPT FOR THE WARRANTY IN SECTION 6.1, ALL SERVICES AND DELIVERABLES ARE PROVIDED "AS IS." CONSULTANT DISCLAIMS ALL OTHER WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT. CONSULTANT DOES NOT WARRANT THAT THE SERVICES WILL BE UNINTERRUPTED, ERROR-FREE, OR COMPLETELY SECURE.


7. Limitation of Liability
7.1. EXCLUSION OF DAMAGES: EXCEPT IN CASES OF GROSS NEGLIGENCE OR WILLFUL MISCONDUCT, IN NO EVENT SHALL CONSULTANT BE LIABLE TO CLIENT FOR ANY INDIRECT, CONSEQUENTIAL, INCIDENTAL, SPECIAL, OR PUNITIVE DAMAGES, INCLUDING BUT NOT LIMITED TO LOST PROFITS, LOSS OF DATA, OR BUSINESS INTERRUPTION, REGARDLESS OF THE THEORY OF LIABILITY.7.2. LIABILITY CAP: CONSULTANT'S TOTAL CUMULATIVE LIABILITY FOR ALL CLAIMS ARISING OUT OF OR RELATING TO THIS MSA, REGARDLESS OF THE CAUSE OF ACTION, SHALL IN NO EVENT EXCEED THE GREATER OF: (a) THE TOTAL FEES PAID BY CLIENT TO CONSULTANT UNDER THE SPECIFIC SOW GIVING RISE TO THE CLAIM IN THE THREE (3) MONTHS IMMEDIATELY PRECEDING THE EVENT, OR (b) FIVE THOUSAND CANADIAN DOLLARS ($5,000.00).


8. Insurance
Consultant agrees to maintain, at its own expense, appropriate Errors & Omissions (Professional Liability) and Cyber Liability insurance coverage throughout the term of this MSA.


9. Independent Contractor
The Parties are independent contractors. Nothing in this MSA shall be construed to create a partnership, joint venture, or employer-employee relationship.


10. Governing Law
This MSA shall be governed by and construed in accordance with the laws of the Province of Nova Scotia and the federal laws of Canada applicable therein.


11. Assignment
Consultant may assign this Agreement without Client's consent to any successor-in-interest, including any entity that acquires substantially all of its assets or business, or to any corporate entity formed by the Consultant for the purpose of conducting the Consultant's business (e.g., "Coastal Phoenix Inc."). Consultant shall provide written notice to Client of such assignment.


12. Force Majeure
Neither Party shall be liable for any delay or failure to perform its obligations under this MSA if such delay or failure is due to causes beyond its reasonable control, including, but not limited to, acts of God, war, terrorism, government acts, embargoes, labour disputes, or catastrophic internet, power, or telecommunications failures.


13. Dispute Resolution
The Parties agree to first attempt to resolve any dispute, claim, or controversy arising out of or relating to this MSA through good-faith negotiation. If the dispute is not resolved within thirty (30) days of the initial notice of dispute, the Parties agree to submit the dispute to binding arbitration in Halifax, Nova Scotia, in accordance with the Arbitration Act of Nova Scotia. The decision of the arbitrator shall be final and binding.


14. Notices
All notices, requests, demands, and other communications under this MSA ("Notices") shall be in writing and shall be deemed given when: (a) delivered personally, (b) sent by registered or certified mail, return receipt requested, or (c) sent by email to the addresses listed in the preamble of this Agreement. Notices of termination, breach, or a claim under Section 7 shall not be sufficient if sent by email alone and must also be sent by method (a) or (b).


15. Survival
The following sections shall survive the termination or expiration of this MSA for any reason: Section 3 (Payment Terms, as to any outstanding fees), Section 4 (Confidentiality), Section 5 (Intellectual Property), Section 6 (Warranties and Disclaimers), Section 7 (Limitation of Liability), Section 10 (Governing Law), Section 13 (Dispute Resolution), and this Section 15.


16. Privacy & Data Protection Policy
Data Collection: Coastal Phoenix Consulting collects name, email, and company information solely for the purpose of executing service agreements and maintaining communication. We do not sell or trade your data to third parties.
Security Standards: All client data collected via our online platforms is transmitted via encrypted channels and stored within environments protected by Multi-Factor Authentication (MFA).
Data Retention: We retain client data only as long as necessary to fulfill our service obligations or as required by Nova Scotia and Canadian federal law.


17. Entire Agreement
This MSA, together with all SOWs, constitutes the entire agreement between the Parties and supersedes all prior proposals, agreements, and understandings. This MSA may only be amended in writing and signed by both Parties.

SHARED RESPONSIBILITY & SECURITY EXCEPTION WAIVER
Document ID: CP-WAV-SEC-002
Effective Date: Upon submitting agreement at the bottom
Provider: Coastal Phoenix Consulting ("Provider")
Client: Person and Company listed in submission of agreement at the bottom ("Client")


1. PURPOSE AND ACKNOWLEDGMENT
This Waiver establishes the demarcation of responsibility between the Provider and the Client regarding system administration, security configurations, and technical debt. The Client acknowledges that the Provider’s managed services are designed around a Security Baseline intended to minimize risk. Any deviation from this baseline requested by the Client, or any independent action taken by the Client, constitutes an "Exception."


2. ADMINISTRATIVE ACCESS & "ROGUE" ACTIONS
The Client acknowledges that granting Administrative, Root, or Superuser access to Client personnel or third parties creates a significant security risk.
Liability Shift: If the Client (or their delegates) exercises administrative privileges to modify, delete, or alter configurations, the Provider is immediately absolved of liability for resulting system downtime, data corruption, or security breaches.
Support Billing: Any remediation required to repair systems altered by Client-side administrative actions will be billed at the Provider’s emergency consulting rate of $185 CAD/hr.


3. SECURITY POLICY OVERRIDES (MFA & CREDENTIALS)
The Provider maintains a strict Multi-Factor Authentication (MFA) and Conditional Access policy.
Exceptions: If the Client requests the disabling of MFA, the relaxation of password complexity, or the "whitelisting" of insecure protocols for any user or service, the Client assumes all financial and legal risk associated with a resulting account compromise or business email compromise (BEC).


4. LEGACY & END-OF-LIFE (EOL) SYSTEMS
The Provider has identified that the Client’s environment contains systems that no longer receive security updates (e.g., Windows Server 2012, Ubuntu 16.04, or legacy hardware).
Acknowledgement: The Client understands these systems are functionally unpatchable and serve as a primary vector for ransomware.
Indemnification: The Client agrees to indemnify the Provider against any claims arising from a breach that originates from or propagates through these EOL systems.


5. WAIVER OF CLAIMS
By signing below, the Client expressly waives any right to claim negligence against Coastal Phoenix Consulting for incidents resulting from the exceptions documented herein. This waiver is binding and shall remain in effect for the duration of the service relationship unless a technical remediation is performed and verified by the Provider.


By agreeing via the form below, the client acknowledges and agrees to the terms outlined above in the Master Service Agreement (MSA) and the Shared Responsibility & Security Exception Waiver

Coastal Phoenix - Insights & Blog

Our insights and blogs help keep you informed and asking the right questions

Is Your Nova Scotia Business "Ransomware-Proof" or Just Lucky?


In 2026, the question for small businesses in Halifax and across Nova Scotia has shifted. It’s no longer about whether a hacker will try to access your network—it’s about what happens after they get in.With AI-driven phishing and automated "machine-speed" attacks on the rise, traditional antivirus is a screen door in a hurricane. For the modern "Overwhelmed Operator"—the office managers and business owners wearing the IT hat—staying ahead of these threats is a full-time job you didn't sign up for.


The Rise of Targeted Attacks in Atlantic Canada: We are seeing a surge in opportunistic attacks targeting the "hidden gems" of our local economy: engineering firms, law offices, and the most important gem - the people, our elderly being most vulnerable of all. These businesses and people often lack the most basic security and backups, making them easy targets for ransomware that doesn't just encrypt files, but actively seeks out and deletes your backups.


How to Build Your Cyber-Stronghold At Coastal Phoenix, we believe in Resilience over Ransom. To protect your business today, you need three non-negotiables:


Immutable Backups (The "Delete-Proof" Vault): Your backups must be stored in a Canadian-hosted environment where they cannot be changed or deleted by an intruder. If your data is immutable, you never have to pay a ransom.


AI-Driven Threat Hunting: You need tools that don't just "detect" but "respond" at machine speed. Our Sentry and Castle tiers use autonomous defence to kill threats before they can spread.


A Fractional IT Partner and vCIO: You shouldn't be managing server updates between client meetings. By offloading your infrastructure to our remote experts at Coastal Phoenix, you get executive-level security without the full-time salary.


Don't Wait for the Encryption Screen! The cost of a "Health Check" is zero, the cost of having your business grind to a halt for a week is often enough to shutter a small firm.


Coastal Phoenix is proud to be a Nova Scotia-owned business helping local, domestic, and international firms navigate the complex world of data sovereignty and cyber-liability insurance.


Book your Cyber-Stronghold Assessment today!

• Ready to lock the gates?