What custom software means here
Custom software at Bedstone is bespoke engineering against your business, not a template, not a low-code shell, not a wrapper around someone else's SaaS. The work spans internal tools, customer-facing systems, integrations, and the data platforms underneath. When AI agents or automation fit the problem, we build them in. When deterministic code is the right answer, we use that instead. The choice is driven by the workflow, not by what is trending.
What we do not do: white-labelled SaaS reskins, drag-and-drop low-code apps where the abstraction will break in eighteen months, or one-off contractor builds without documentation, handover, or operational responsibility for the system after launch.
Where this fits
Custom software is the right call when most of the following are true. If fewer than half apply, an off-the-shelf SaaS plus light integration is usually more cost-effective.
- You have an operational workflow that is core to the business but does not fit any off-the-shelf tool cleanly. You are paying SaaS fees and still maintaining spreadsheets to fill the gaps.
- You have integrations across three or more systems that need to talk to each other in real time, with logic that is specific to your business.
- Your team spends measurable hours per week on data entry, reconciliation, or context-rebuilding work that a custom system could absorb.
- You have data that is genuinely yours (customer records, transaction history, operational metrics) that needs to live in software you control.
- Compliance, audit trails, or AU data residency obligations rule out generic offshore SaaS.
- You have budget allocated for the engagement and a team that will adopt the system after handover.
What we build
Concrete patterns we have shipped to production. Most engagements combine several.
- Bedstone OS: your internal AI workspace. Your own private domain (e.g.
ai.yourcompany.com.au) that connects every business system you run, your CRM, ERP, accounting, document store, ticketing, project management, internal docs, into one chat-style interface backed by an LLM. Your team asks questions in plain English and the system answers from your actual data, not from public training data. AU-region hosted, your data stays yours, branded as your platform. The fastest way to get an AI capability live inside the business that staff actually use. - Internal operations platforms. The system that holds the business together: compliance work, project tracking, custom calculators, document workflows, client portals, internal communications. Single login, role-based access, audit trail, AU-region hosted.
- Custom CRMs and sales pipelines. When generic CRMs force your sales motion into a template that does not match. We build the data model and workflows that match how your team actually sells, with API integrations to billing, finance, and support.
- Customer portals and self-serve dashboards. Client-facing systems where customers manage their accounts, raise tickets, view contract history, and self-serve common requests. Reduces inbound support volume.
- B2B SaaS products. Net-new commercial software for founders building a product business. Full stack: frontend, API, database, infrastructure, billing, auth, multi-tenancy. We build, ship, and hand over so your team or a successor agency can run it.
- Operational dashboards and internal tools. Real-time visibility into the business. Order pipeline, fleet status, content production, financial reconciliation, anomaly flags. AI-augmented decisioning where the logic does not fit deterministic rules.
- Integration layers between systems. When the existing stack is fine but the systems do not talk. We build the integration layer (webhooks, ETL pipelines, event streams, API gateways) that keeps data in sync and workflows moving across the boundary.
- Workflow automation systems. Multi-step approval flows, document routing, claim processing, vendor onboarding. Built into the systems people already use, not as a separate tool that needs adoption.
- Data platforms and analytics layers. Postgres / ClickHouse warehouses with dbt-style transformations, dashboards, and the API to feed AI agents downstream. Owns the data; you own the platform.
- Mobile and web frontends. Customer-facing iOS / Android apps and progressive web apps, deeply integrated with the operational backend. Built for businesses where the customer experience is the product.
- AI-integrated systems. Custom software with AI agents wired into the workflow where it makes sense. Document intelligence, intelligent routing, content generation, knowledge search, decision support. The same engineers build both layers.
How we work
Five-step engagement from intake to rollout. We work on both a project basis and an ongoing basis. A fixed-scope project takes the system to production, then transitions to ongoing support and maintenance via monthly retainer, fractional engagement, or scheduled improvement sprints. One-off audits available for teams not yet ready to build.
- Audit. Department-by-department workflow review. Map the systems, score each candidate problem for build difficulty and ROI. The audit deliverable is yours regardless of whether you proceed.
- Scope sprint. Concrete plan with milestones, integration list, success metrics, ranges for cost and timeline, R&D eligibility note. Signed off before anything is built.
- Proof of concept. Working system in your environment, against real data and real users. Not a slide deck. Not a prototype that will be thrown away.
- Verification. Adversarial testing, load testing, security review, honest go-or-no-go on rollout. We say no to our own work when the data says so.
- Rollout. Staged deploy, monitoring, rollback paths, documentation. Handover training so your team operates the system without us. Optional retainer for ongoing iteration.
Working with your IT team
Most builds touch systems your IT department already runs. We partner with them rather than route around them. We speak their language because we came up as software engineers and infrastructure operators ourselves, so the conversation about API keys, service accounts, network access, identity provider integration, and change-management approvals is direct and technical. No translation layer required.
In practice that means your IT team gets a clean access request with scopes spelled out, security implications stated up front, and integration documentation they can audit. We do not ask for blanket admin credentials. We work to least-privilege scopes, document what we use, and hand the access back at engagement end. For organisations with strict change-management or IRAP-aware environments, we adapt to your process.
What week one looks like
The audit phase is where most software projects drift. We compress it into a single sprint week so you have a concrete plan before the second invoice. Day-by-day shape of a typical first week:
- Day 1. Kickoff workshop. Two to three hours on-site for Brisbane and SEQ clients, video for remote. We meet the team who will operate the system, walk the office or floor where the work happens, and capture workflows live.
- Day 2. Department interviews. 30–45 minute conversations with each function in scope. Operations, finance, sales, support, IT. We ask "what would the perfect version of this workflow look like." High-leverage problems surface here.
- Day 3. System and data mapping. Hands-on with your stack. CRM, ERP, accounting, billing, document store, whatever the candidate workflows touch. We assess API access, data shape, integration paths, and what blocks a custom build today.
- Day 4. Scoring and prioritisation. Every candidate workflow scored on four axes: dollar impact, headcount hours reclaimed, technical feasibility, rollout risk. Drops into a ranked shortlist with conservative ROI math.
- Day 5. Scope draft and review. Concrete plan, timeline, success metrics, integration list, R&D Tax Incentive eligibility note. Sent before end of week, reviewed live the following Monday.
By end of week one you have an audit report, a ranked shortlist, a concrete scope document, and an honest read on whether to proceed. If we decide an engagement is not the right fit, you keep the audit and use it to brief whoever you engage next.
What you get at the end
By the end of a typical engagement, you hold more than running software. You hold everything required to operate, support, and extend the system in-house.
- The working system. Source code, infrastructure-as-code, database schema, deployment pipeline, monitoring stack. All yours.
- Architecture and operational documentation. System diagrams, API references, data models, operational runbooks, on-call procedures. Enough that a successor team can pick it up cold.
- Handover training. Working sessions with your team so they own the system. For Brisbane and SEQ clients these are on-site by default.
- A verification report. Load tests, security tests, integration tests, documented go-live readiness.
- Monitoring and observability. Dashboards, alerting, structured logging. Catches drift, performance regressions, and integration failures in production.
- An R&D readiness pack. Sprint documentation aligned with the Australian R&D Tax Incentive so your tax specialist can file with confidence.
Custom software vs alternatives
Most operators land on one of four options when they need software the business can run on. Each has trade-offs that matter at decision time.
Off-the-shelf SaaS. Fast to start, predictable subscription cost, the vendor maintains it. Right when your workflow is generic enough that the SaaS template fits without modification. Less right when you find yourself paying for the SaaS and still running half the workflow in spreadsheets and shared inboxes to fill the gaps.
Low-code / no-code platforms. Faster than custom code for simple workflows. Right for internal tools where the requirements are stable and the data model is shallow. Breaks down when the workflow needs custom logic, deep integrations, performance at scale, or when the platform vendor changes pricing or capability in a way you cannot control.
Offshore development shop. Cheaper hourly rates, but rarely the right call once you factor in the 43.5% R&D Tax Incentive available for engaging Australian operators. AU-specific considerations like ATO workflows, BAS reporting, AU privacy law, data residency obligations, and business context are usually unfamiliar. The hourly saving disappears once you absorb rework, missed compliance details, and the lost tax offset.
Australian custom software partner. Senior engineers do the work end-to-end. The team covers software, integrations, data, security, infrastructure, and AI as one capability rather than four vendors. Right when the workflow is core to the business, requirements are real, and engineering caliber matters more than consultancy overhead.
How to evaluate a custom software partner
Six checks worth running before signing with any custom software agency. They surface the difference between an engineering shop that ships and a marketing layer over juniors.
- Ask who actually writes the code. The named partner who sells, or someone you have never met. Get specific. Get LinkedIn profiles. The named seniors should be the named builders.
- Ask for a production reference. "What is the most recent system you shipped that is operating in production right now?" An honest answer takes thirty seconds. Hedging is the answer.
- Ask about handover and documentation. A real software partner has documentation, runbooks, and a training plan as deliverables, not afterthoughts. If they cannot describe handover in detail, your team will own the maintenance forever. and the original team will not be reachable.
- Ask how they handle production failure. Incidents, rollbacks, data migration mistakes, integration breakage. The answer should be a process, not a hand-wave. Mature engineers have incident logs.
- Ask about AU regulatory context. ATO, BAS workflows, AU privacy law, data residency, R&D Tax Incentive documentation, IRAP for government workloads. An offshore shop or US-centric firm will struggle here. A real AU agency answers fluently.
- Ask for the audit deliverable shape. Department-by-department workflow map, scored candidates, ROI math, prioritised shortlist. If the audit output is a slide deck without numbers, the build will be the same.
Engagement patterns
Anonymised examples of the shape custom software engagements typically take.
Operational platform for an Australian professional services group
An Australian professional services group running several businesses under one structure did not have a single place to operate from. Work was scattered across spreadsheets, shared inboxes, and tools that did not talk to each other. Every time a piece of work crossed from one business into another, someone was rebuilding context from scratch.
We built the platform that holds it all together. It runs the compliance work, the projects, the custom calculators each business uses, the documents, the client portals, and the email going back and forth on the right threads. Logins work across the group through Google Workspace and Microsoft. Each business has its own data and configuration, and the rules each one actually operates under are built into the system rather than papered over with a generic template. All hosted in Australia.
It is in production. Workflows that used to live in five different places live in one. The group is moving more of its operations onto the platform across every business it runs.
Real-time content production pipeline for a software company
An Australian software company processing more than 100 hours of live video per day was bottlenecked by manual highlight editing. The team was spending around 30 minutes per clip on cuts, captions, and uploads. We built an AI-agent pipeline bespoke to their stack. watches streams in real time, detects engagement moments via combined audio transcript and visual analysis, automatically cuts vertical clips with FFmpeg, generates platform-tuned captions, and delivers ready-to-post content into the content management system. Daily manual editing dropped from four hours to under ten minutes of review. The pipeline runs at effectively zero marginal cost because it sits inside their existing infrastructure. Output: more than 200 clips per day from continuous live streams.
AI-augmented operations dashboard for a mid-market operator
A mid-market Australian operator with content distribution running across multiple channels needed a unified dashboard for tracking, scheduling, and reviewing AI-generated artefacts before publication. We built an internal Next.js + Postgres platform with role-based access, audit trails, and AI agent integration for automated quality scoring. Four prior workflows (separate spreadsheets, separate review threads, manual logging) collapsed into one tool with a complete audit trail. Reviewer time per artefact halved.
Common stack and integrations
We pick the stack that fits the problem, not the trend cycle. The default toolkit:
- Languages. TypeScript and Python by default. Go and Rust where performance, concurrency, or runtime cost justifies them. We do not chase languages for novelty.
- Frontend. Next.js / React for web. SwiftUI / Kotlin for native mobile. Progressive web apps when a single codebase is the better trade-off.
- Backend. Node.js, Python (FastAPI / Django), Go services. REST and GraphQL where each fits. Event-driven architectures via Kafka, RabbitMQ, or AWS EventBridge for systems with real-time data flow.
- Data. Postgres as the default relational store. Redis for caching and queues. ClickHouse for analytical workloads. S3-compatible storage for documents and media. dbt for transformations.
- AI integration. OpenAI, Anthropic, and open-weight models via Ollama / vLLM for on-premise. LangGraph or custom orchestration for agent workflows. Evals and observability built in.
- Infrastructure. AWS, Azure, GCP. AU-region by default. Terraform / OpenTofu for infrastructure-as-code. Docker and Kubernetes where the scale calls for it. On-premise deployments supported.
- Identity. Auth0, AWS Cognito, Microsoft Entra ID, Google Workspace SSO. SCIM provisioning. Role-based access wired to your existing directory.
- Integrations. Salesforce, HubSpot, Microsoft Dynamics, Xero, MYOB, NetSuite, Stripe, Shopify, M365, Google Workspace, Slack, Teams, Zendesk, Intercom, and most major SaaS platforms with documented APIs.
- Monitoring. Datadog, Grafana, Sentry, CloudWatch. Structured logging, distributed tracing, error budgets, and alert routing into the tools your team already uses.
How we structure engagements
Every engagement is scoped to the specific work. We do not publish fixed pricing because every business is different. Cost ranges and timelines are agreed up front in the scope document, before any build starts. Four common structures:
- Fixed-scope project. Defined deliverable, defined timeline, defined acceptance criteria. Useful when you know exactly what you want built and want predictable cost.
- Monthly retainer. Senior engineering capacity, an embedded technical lead, ongoing iteration. Useful when you have an evolving roadmap and want continuity.
- Fractional engagement. Senior advisory and oversight, with delivery handled by your team or a separate vendor. Useful when you have engineering capacity but no AI or platform seniority.
- One-off audit or strategy work. Useful before you commit to a build path. The audit output is yours regardless.
Most mid-market engagements sit in a range that the R&D Tax Incentive can offset a meaningful portion of. Reach out and we will reply within 24 hours with the shape and pricing that fits your situation.
R&D Tax Incentive
Most novel custom software work qualifies as eligible R&D activity under the Australian 43.5% R&D Tax Incentive, jointly administered by AusIndustry and the Australian Taxation Office. For Australian mid-market operators this often funds a meaningful portion of the engagement. We document sprints properly so your tax specialist can file with confidence. We hand over the readiness pack. We do not lodge the claim. See our guide to the R&D Tax Incentive for AI in Australia for the detail.
Common questions
What kinds of businesses do you build custom software for?
Mid-market and enterprise Australian operators with operational scale: professional services, financial services, technology, healthcare, mining services, construction, logistics, government, media. We work best with businesses that have real workflows, real users, and real revenue at stake. not pre-product founders looking for a contractor.
How long does a custom software engagement take?
Audits run one to two weeks. Proof of concept typically four to six weeks. Full builds vary by scope but most ship in eight to sixteen weeks from audit to production. Ongoing iteration runs as a monthly retainer once the system is live.
Do you build mobile apps?
Yes. Native iOS and Android, plus progressive web apps where a single codebase fits the requirements. Mobile is usually part of a broader engagement that includes the backend, integrations, and operational tooling. we do not take pure mobile-only briefs unless the rest of the stack is already built and supportable.
Can you integrate with our existing systems?
Almost always yes. We integrate against documented APIs from Salesforce, HubSpot, Microsoft Dynamics, Xero, MYOB, NetSuite, Stripe, Shopify, M365, Google Workspace, and most major SaaS platforms. For systems with weaker APIs we use middleware, direct database access, or RPA layers where needed. Integration approach is scoped in the audit phase.
What happens after the system is live?
You own it. Source code, infrastructure, documentation, training. Most clients continue on a monthly support retainer for ongoing iteration and new features. Some operate fully independently after handover. Both are fine. We do not sell dependency.
Do you build on-premise as well as cloud?
Yes. AU-region cloud (AWS Sydney, Azure Australia East, GCP Australia Southeast) is the default. On-premise deployments supported for workloads with data sovereignty, air-gap, or regulatory requirements. Hybrid architectures common in mining services, government, and healthcare.
Is our data safe with you?
Yes. We sign NDAs, use AU-region infrastructure where required, and architect for data residency. We do not train models on your data. Sensitive workloads are designed to IRAP-aware standards when required. Security audits and penetration testing run as a separate Bedstone service when needed.
What if our requirements change mid-engagement?
They will. Real businesses do not have static requirements. We work in two-to-four-week sprints with checkpoints, so scope changes are captured at sprint boundaries with cost and timeline impact made explicit. We do not absorb scope creep silently; we also do not throw out the relationship over a reasonable mid-flight pivot.