Case Study

Fintech Wallet

A fully customizable, cross-platform mobile wallet app for banking and crypto services, featuring complete service integrations and deployment on Google Cloud.

Fintech Wallet Hero

Strategic Modernization of Enterprise Fintech: A Comprehensive Remediation of Mobile Architecture using Flutter and Clean Design Principles

Executive Summary

In the high-stakes ecosystem of modern financial technology, the velocity of feature delivery is often prioritized over architectural rigour, creating a pervasive accumulation of technical debt that eventually stifles innovation. For enterprise-grade fintech applications—particularly those tasked with handling sensitive credit data, identity verification, and real-time social interaction—this debt is not merely a maintenance nuisance; it represents an existential risk to security, scalability, and consumer trust. The ability to pivot, scale, and secure user data is directly correlated to the structural integrity of the underlying codebase.

This white paper provides an exhaustive technical analysis of a high-impact consulting engagement undertaken by Acme Software. We were tasked with the remediation, modernization, and scaling of a credit-focused mobile application originally developed by a client’s internal engineering team. While the application was built on the Flutter framework, intended to leverage its cross-platform capabilities, the initial implementation suffered from critical architectural fragility. It remained bound to a single platform (iOS), plagued by regression defects, and lacked the structural boundaries necessary for enterprise-scale team collaboration.

Our engagement focused on a holistic architectural pivot. By moving from an ad-hoc, monolithic frontend structure to a strict, layered implementation of Clean Architecture —specifically utilizing the clean_framework package—we established a codebase capable of rapid evolution without destabilization. Furthermore, our team engineered bespoke native integrations for Very Good Security (VGS), effectively creating the first Flutter plugin for VGS Collect to ensure PCI DSS compliance without compromising the native user experience.

The following report details the methodology, technical challenges, and strategic decisions that transformed a fragile MVP into a robust, cross-platform enterprise product. It serves as a blueprint for CTOs and engineering leaders facing similar inflection points, demonstrating how rigorous frontend engineering in Flutter can drive tangible business value, reduce defect rates, and accelerate market penetration.

Strategic Imperatives

The engagement was driven by three core strategic imperatives, which shaped every technical decision:

  1. Platform Ubiquity: Breaking the technical constraints that limited the application to iOS, thereby unlocking the Android market and doubling the total addressable user base.

  2. Architectural Resilience: Decoupling business logic from UI rendering to enable test-driven development (TDD), significantly reducing the regression rate during rapid release cycles.

  3. Compliance as Code: Embedding security and identity verification deep into the application architecture, ensuring that regulatory requirements (KYC, AML, PCI DSS) were met through structural guarantees rather than superficial patches.

The outcomes of this engagement demonstrate that with the correct architectural oversight, Flutter is not just a tool for rapid prototyping, but a viable, high-performance framework for the most demanding enterprise fintech environments.

Initial Challenges & Risk Assessment

The client, a disruptor in the credit-building space, had achieved significant market validation. However, the application’s initial codebase, developed under the pressure of early-stage startup timelines, exhibited the classic symptoms of the “Big Ball of Mud” anti-pattern. As feature requirements grew in complexity—incorporating live audio, real-time banking connections, and identity verification—the lack of architectural boundaries began to cause systemic failures.

The “Big Ball of Mud”: Anti-Pattern in Flutter

Flutter’s flexibility, specifically its declarative UI paradigm, can be a double-edged sword. Without strict discipline, it is dangerously easy to mix business logic, network requests, and state mutations directly within the Widget tree. Our initial audit of the client’s codebase revealed precisely this structural collapse.

The application lacked a unified state management strategy. Instead, it relied on a chaotic mix of ad-hoc setState calls, singleton globals, and inconsistent package usage. This led to “state bleeding,” where data from one screen (e.g., a user’s credit utilization ratio) would persist or conflict with data on another screen (e.g., a loan application form).

  • Tight Coupling of Network and UI: GraphQL queries were defined directly inside UI widgets. This tight coupling meant that testing the business logic required spinning up the entire UI and network stack. Consequently, the codebase had near-zero unit test coverage, making every refactor a high-risk operation.

  • Fragility in Data Handling: The application relied heavily on primitive data types (Strings and Integers) passed loosely between layers. The absence of strongly typed Domain Models meant that parsing errors—such as a null value in a nested JSON response—often propagated up to the UI, causing “Red Screen of Death” crashes in production.

  • Performance Bottlenecks: Due to poor state management, the application suffered from excessive rebuilds. A single update to a user’s profile could trigger a repaint of the entire widget tree, degrading frame rates and creating a sluggish user experience on older devices.

The iOS-Only Paradox

Despite being built on Flutter—a framework renowned for its “write once, run anywhere” capability—the application could not be compiled for Android. This paradox was the result of:

  1. Hardcoded Native Dependencies: The codebase contained direct calls to iOS-specific libraries (CocoaPods) without corresponding Android implementations or abstraction layers.

  2. Fragile Build Configurations: The Gradle build scripts were neglected, lacking the necessary configurations for multidexing and compatibility with modern Android SDK versions.

  3. Design Debt: Navigation patterns and UI components were hardcoded to mimic iOS styling (Cupertino widgets) exclusively, ignoring Android’s Material Design conventions, which would have resulted in a jarring user experience for Android users.

Compliance and Security Gaps

Fintech applications operate under stringent regulatory frameworks. The initial implementation handled sensitive data handling using webviews, a method that, while functional, offers a sub-par user experience and limited control over security auditing. The integration with Very Good Security (VGS) was superficial, failing to leverage native tokenization capabilities that allow for a seamless, PCI-compliant user journey. Additionally, the handling of Personally Identifiable Information (PII) lacked a coherent sanitization strategy, raising concerns about data leakage in logs and analytics.

Table 1: Risk Assessment Summary

Fintech applications Compliance and Security Gaps Compliance and Security Gaps

Architectural Assessment

To resolve these systemic issues, a superficial refactor was insufficient. The application required a foundational architectural reset. Acme Software advocated for and implemented Clean Architecture, adapted for the Flutter ecosystem via the clean_framework package.

The Case for Clean Architecture in Fintech

Clean Architecture, as formalized by Robert C. Martin, emphasizes the separation of concerns and the independence of the core business logic from external frameworks, databases, and user interfaces. For a fintech application, this separation is critical. It ensures that the calculation of a credit score or the validation of a bank link (the Domain) is not entangled with how that data is displayed (the **Presentation) or how it is retrieved (the Infrastructure).

While patterns like MVVM (Model-View-ViewModel) or MVC (Model-View-Controller) are common, they often fail to enforce strict boundaries in large-scale applications.

  • MVVM Weakness: ViewModels often become “God Classes,” handling data fetching, parsing, state holding, and UI logic simultaneously.

  • MVC Weakness: Controllers often act as mediators that are tightly coupled to both the View and the Model, making them difficult to test in isolation.

Clean Architecture, by contrast, enforces the Dependency Rule: source code dependencies can only point inwards. The inner layers (Business Logic) know nothing of the outer layers (UI, Network).

The clean_framework Implementation Style

We utilized clean_framework to institutionalize these architectural boundaries. This package provides a toolkit of abstract classes that force developers to adhere to the layered structure. The architecture is composed of four distinct layers, which we implemented as follows:

  1. Entity Layer (The Core): Located in the innermost circle, Entities are immutable data structures that represent the state of the application. In our implementation, an Entity does not contain logic; it is a pure snapshot of data. We utilized copy methods to generate new state instances, ensuring true immutability. This eliminates an entire class of concurrency bugs where a shared object is mutated unpredictably by different parts of the app.

  2. Use Case Layer (The Application Business Rules): The UseCase encapsulates the specific business rules of the application. It orchestrates the flow of data to and from the Entities. Crucially, a Use Case is agnostic to the UI. It receives strictly typed DomainInputs and emits DomainModels.

  • Implementation Insight: We moved all credit score calculation and eligibility logic into Use Cases. This allowed us to write unit tests that executed in milliseconds, verifying complex financial logic without ever launching a Flutter emulator.
  1. Adapter Layer (Presenters & Gateways): This layer serves as the translation mechanism between the clean inner circle and the dirty outer world.

  • Presenters: These sit between the UI and the Use Case. A Presenter subscribes to a Use Case, receives a DomainModel, and transforms it into a ViewModel optimized for a specific View. For example, the Use Case might emit a raw DateTime; the Presenter converts it into a localized string “Dec 30, 2025” for display.

  • Gateways: These sit between the Use Case and the external data sources. A Gateway receives an abstract data request from the Use Case and translates it into a concrete GraphQL query or HTTP request.

  1. External Interface Layer (The Infrastructure): This is the outermost layer, containing the implementation details that change most frequently: the Flutter UI widgets, the clean_framework_graphql client, local storage, and third-party SDKs.
The clean_framework Implementation Style

Flutter-Focused Solution Design

The modernization effort centered on refactoring the frontend to strictly adhere to the architecture described above, while interfacing with the client’s existing Golang backend via GraphQL.

Backend Decoupling via GraphQL and Gateways

The client’s backend services were developed in Golang and exposed via a federated GraphQL API. A major source of fragility in the legacy app was the direct embedding of GraphQL query strings within UI widgets. This “Query Colocation” made the UI dependent on the specific schema structure of the backend.

We decoupled this relationship by enforcing the use of Gateways for all data interactions.

  • Request Normalization: The Gateway is responsible for constructing the GraphQL query. When the backend responds—often with a deep, complex JSON graph—the Gateway parses this response. It filters out extraneous data and normalizes the result into a flat, strongly-typed internal object.

  • Error Translation: In fintech, error handling is nuanced. A “declined transaction” is not a system error; it is a valid business state. The Gateway catches raw GraphQL errors (or HTTP 500s) and translates them into domain-specific Failures (e.g., InsufficientFundsFailure, IdentityVerificationFailure). This ensures that the Use Case never deals with generic network exceptions, only meaningful business outcomes.

  • Typing and Safety: We utilized clean_framework_graphql to handle the transport. This package allows for the definition of strict deserializers, ensuring that if the API contract is violated (e.g., a missing required field), the failure is caught at the Gateway boundary, preventing “null pointer” crashes deep in the UI logic.

State Management: The Power of Unidirectional Flow

The legacy app’s reliance on setState created a spaghetti-code effect where the source of truth was scattered across the widget tree. We replaced this with a strict Unidirectional Data Flow powered by the clean_framework state machine.

The lifecycle of a data update in the remediated app follows a rigid path:

  1. Event: The user taps “Refresh Credit Score” in the UI.
  2. Action: The Presenter dispatches a DomainInput (e.g., FetchScoreInput) to the UseCase.
  3. Processing: The UseCase validates the request (e.g., checking if a refresh is allowed within the current time window).
  4. Data Request: The UseCase requests data from the Gateway.
  5. Network Operation: The Gateway executes the GraphQL query against the Golang backend.
  6. State Mutation: On a successful response, the Gateway returns the data to the UseCase. The UseCase updates the Entity using the merge method, creating a new immutable state instance.
  7. UI Update: The Presenter, listening to the UseCase, detects the new state. It computes a new ViewModel and the View rebuilds automatically.

This cycle ensures that the UI is always a reflection of the current application state. There are no “hidden” states inside the widgets. If the credit score is 750 in the Entity, every widget in the app will display 750.

Table 2: Comparison of State Management Approaches

State Management: The Power of Unidirectional Flow

Cross-Platform Enablement (Android)

With the architecture decoupled, enabling Android support became a systematic process of replacing iOS-hardcoded dependencies with abstractions.

  • Dependency Audit: We audited pubspec.yaml for packages that were iOS-only. We replaced or wrapped these in platform-agnostic interfaces.

  • Build System Remediation: We completely overhauled the android/build.gradle configuration. We updated the minSdkVersion to 21 and targetSdkVersion to 33 to support modern security libraries. We also enabled MultiDex to support the large number of methods introduced by the inclusion of comprehensive third-party SDKs like Agora and Plaid.

  • Adaptive UI: While the client had a bespoke design system, certain interactions required platform-specific adaptation. We implemented logic within the Presenters to expose platform flags to the UI, allowing widgets to render back buttons or modal transitions that felt native to Android or iOS respectively.

Security, Identity & Compliance Implementation

A non-negotiable requirement for this engagement was the secure handling of sensitive user data. The app needed to collect Social Security Numbers (SSN) and Credit Card details (PAN/CVC) without the client’s backend ever touching the raw data, thereby minimizing PCI DSS compliance scope.

The vgs_flutter Plugin: A Native Bridge for Security

The client utilized Very Good Security (VGS) to tokenize sensitive data. VGS provides native SDKs (iOS and Android) that render secure input fields. However, at the time of the engagement, no official Flutter plugin existed.

Using a webview for data collection—the standard workaround—was rejected due to poor user experience and performance. To solve this, Acme Software engineered vgs_flutter, a custom plugin bridging the native VGS SDKs into the Flutter hierarchy.

Architecture of vgs_flutter

The plugin utilizes Flutter’s Platform Views technology to embed native OS views directly into the Flutter render tree.

  1. Platform View Integration: We utilized UiKitView (for iOS) and AndroidView (for Android). These widgets essentially punch a “hole” in the Flutter canvas, allowing the underlying OS to draw a native view in that space. We implemented a FlutterPlatformViewFactory on both platforms to instantiate the native VGSTextField (iOS) and VGSEditText (Android).
  • Technical Nuance: Creating a seamless experience required careful handling of the keyboard and focus capability. We had to ensure that when a user tapped “Next” on a Flutter text field, focus moved correctly to the native VGS field, and vice versa. This required complex focus node management and channel messaging.
  1. MethodChannel Communication: Since the input field is native and the “Submit” button is Flutter, they exist in different memory spaces. We established a MethodChannel for Inter-Process Communication (IPC).

  • The Submit Flow: When the user taps “Submit” in Flutter, a message is sent over the channel. The native code intercepts this, triggers the VGS SDK’s submit() function, handles the network interaction with VGS servers, and receives a token.

  • Token Return: The token (e.g., tok_12345) is then passed back to Flutter via the channel. Crucially, the raw credit card number never enters the Dart memory heap, ensuring that memory dumps of the Flutter process cannot reveal sensitive financial data.

MethodChannel Communication

Identity Verification: Vouched and Plaid

To meet Know Your Customer (KYC) requirements, we integrated Vouched for identity verification and Plaid for bank account linking.

  • Vouched Integration: We integrated the Vouched SDK to capture images of physical ID cards and user selfies. This integration utilized the device’s camera permissions. We configured the “Device Guard” security module to ensure data collection compliance across different regions. The integration allowed for real-time feedback on image quality (e.g., “Move closer,” “Too dark”), reducing the rate of failed verifications.

  • Plaid Link: We implemented the Link Token flow for maximum security.

  1. The Go backend calls Plaid to generate a short-lived link_token.
  2. This token is passed to the Flutter app.
  3. The Flutter app initializes the Plaid Link SDK with this token.
  4. Upon success, Plaid returns a public_token to the app.
  5. The app sends this public_token back to the backend, which exchanges it for a permanent access_token.

Security Note: We strictly enforced that the access_token was never sent to, or stored on, the mobile device, preventing unauthorized access to user bank accounts if the device were compromised.

CI/CD & Release Automation

Transitioning from manual, error-prone builds to a fully automated pipeline was essential for increasing developer velocity and ensuring release stability. We implemented an enterprise-grade CI/CD pipeline using GitHub Actions, aligned with the GitFlow branching strategy.

Pipeline Architecture

We defined separate workflows for the develop and master branches, treating infrastructure as code.

  1. Automated Quality Gates: Every Pull Request (PR) triggers a verification workflow.
  • Unit Testing: The workflow runs flutter test. Thanks to the decoupled clean_framework architecture, we could run hundreds of logic tests in seconds.13
  • Static Analysis: We enforced strict linting rules using flutter analyze to catch potential type errors and anti-patterns before code review.13
  • Code Coverage: We integrated Codecov to ensure that new features maintained or improved the overall test coverage percentage.
  1. Secret Management: A critical security enhancement was the removal of all signing keys and API secrets from the source code.
  • We utilized GitHub Secrets to store the Android Keystore (release.jks) and Google Play Service credentials as Base64-encoded strings.
  • During the build process, a dedicated step decodes these secrets into temporary files, signs the app, and then immediately deletes the files, ensuring no sensitive keys persist in the build artifacts.
  1. Automated Distribution:
  • Android: The pipeline uses Fastlane to upload the compiled App Bundle (.aab) directly to the Google Play Console’s Internal Test track.
  • iOS: The pipeline uploads the IPA to TestFlight. This automation reduced the “code complete to QA available” time from hours (manual builds) to minutes.
Security Note

Feature Enablement: Live Audio Rooms

To drive user engagement, the client required a “Clubhouse-style” live audio feature where users could join rooms to listen to credit education or financial advice. We architected this using Agora for the real-time audio transport.

Architectural Challenges of Real-Time Audio

Integrating a real-time communication engine into a structured app presented unique challenges regarding lifecycle management and background execution.

  1. Background Persistence: A key requirement was that users must be able to listen to the audio while multitasking (e.g., checking their credit score, navigating the app, or even locking the screen).

  • Android Foreground Service: On Android, the OS aggressively kills background processes to save battery. We implemented a Foreground Service with a persistent notification (“Listening to Credit Advice…”). This signals to the OS that the app is performing user-aware work and must not be terminated.

  • iOS Background Modes: We configured the UIBackgroundModes capability for audio, allowing the Agora engine to maintain the VoIP socket connection while the app is in the background.

  1. Global Floating Controller: To allow users to navigate the app without leaving the audio room, we detached the audio controls from the specific screen. We implemented a Global Overlay widget inserted into the root MaterialApp builder.
  • This overlay subscribes to the AudioRoomUseCase. Because the Use Case is a singleton within the dependency scope, it retains the connection state (Connected, Muted, Speaking) regardless of the visible route. This allows the user to browse anywhere in the app while the “Mini Player” floats above the content.
  1. Role Management: The logic for “Speakers” vs. “Listeners” was complex. We encapsulated this in the AudioRoomUseCase. The Use Case listens to Agora events (UserJoined, UserMuted) and updates a reactive Entity. This separation allowed us to unit test the room logic (e.g., “Auto-mute a user if they join as a listener”) without needing a live Agora connection.

Business & Technical Outcomes

The engagement with Acme Software resulted in a transformative shift in the client’s mobile capabilities, turning a technical liability into a strategic asset.

  1. Market Expansion & Revenue Potential

By resolving the Android build issues and abstracting the iOS dependencies, we enabled the application to launch on the Google Play Store. This effectively doubled the Total Addressable Market (TAM) for the client. The consistent feature parity ensured that marketing campaigns could target all mobile users without platform caveats.

  1. Operational Efficiency & Velocity

The migration to clean_framework and the implementation of CI/CD pipelines had a dramatic effect on engineering velocity.

  • Defect Reduction: The strict separation of concerns and the introduction of unit testing reduced the regression defect rate by approximately 40%.

  • Faster Onboarding: The standardized architecture meant that new developers could understand the “place for everything” (Entity vs UseCase vs Widget) rapidly, reducing ramp-up time.

  • Parallel Development: The decoupling of the Frontend from the Backend allowed the mobile team to build UI against mocked Gateways while the backend team was still finalizing APIs.

  1. Security & Compliance Confidence

The implementation of the vgs_flutter plugin and the strict handling of Plaid/Vouched tokens meant the client could pass rigorous third-party security audits. The architectural guarantee that raw PAN data never touches the Flutter heap provided a level of security assurance that webviews could never match.

Conclusion

Modernizing a legacy codebase while simultaneously delivering critical business features is a high-stakes endeavor that requires more than just coding skills; it demands architectural vision. For this fintech client, the decision to invest in a rigorous, layered architecture using Flutter and clean_framework was pivotal. It transitioned their platform from a fragile, single-platform prototype into a robust, secure, and scalable enterprise product.

The success of this engagement demonstrates that Flutter, when paired with Clean Architecture and enterprise-grade tooling (GitHub Actions, VGS, GraphQL), is capable of handling the most demanding requirements of the financial sector. Acme Software’s approach—prioritizing architectural hygiene, type safety, and automated quality assurance—ensures that the client is not just ready for today’s user base, but prepared for the exponential growth of tomorrow.

By treating infrastructure, security, and compliance as integral parts of the codebase, we have laid a foundation that will support the client’s innovation for years to come. This project stands as a definitive case study in the power of professional Flutter engineering to solve complex enterprise challenges.