Hire by Technology
SERVICES
Contents
Share this article
Key Takeaways
React has become the standard library for building fintech interfaces, including neobank dashboards, payment onboarding flows, transaction histories, and KYC screens. The main benefit of React is its flexibility, but that flexibility also opens teams up to errors that turn into serious issues when scaling.
A React codebase that ignores best practices accumulates debt that can become incredibly expensive when the compliance deadline arrives or the product needs to scale.
Let’s cover the practices that matter most for React development in fintech, so you can keep your financial interfaces performant, maintainable, and secure as complexity grows.
If you need senior React developers with production fintech experience, Trio places pre-vetted engineers in 3–5 days at $40–$80/hr.
Before covering the React best practices, it helps to understand why fintech React codebases go wrong in specific ways.
Maintainability under compliance pressure is by far one of the biggest concerns.
Regulatory requirements change very frequently. In a fintech codebase, components that handle multiple concerns simultaneously become very hard to update when one of those concerns changes, within the required timeframe.
Scalability without architectural debt is also a major concern.
A fintech product that starts as an MVP and grows to a full banking platform will add features faster than it adds developers. Components that were acceptable at MVP complexity become unmanageable at production scale if they weren't structured with growth in mind from the start.
Finally, you need to see security as a continuous concern. In general web development, a security vulnerability is typically discovered and patched. In fintech, some vulnerabilities carry regulatory consequences.
The single responsibility principle is incredibly important in fintech. Each React component should have one reason to change. This can be one piece of UI logic, one interaction, or one display concern.
A component that fetches an account balance, formats it for display, and handles the loading and error states has three reasons to change.
Regulatory requirements might change how balances display, the API response format might change, and the error handling may need to be improved for accessibility reasons. These should be separate concerns that shouldn't be entangled in the same component.
The official React documentation frames this as "Thinking in React". You need to draw boxes around every component in a design mockup, name them, and arrange them in a hierarchy. Each box should correspond to one piece of the data model and one piece of the UI.
In fintech specifically, small, focused components are also easier to test, audit, and update when compliance requirements change.
Async waterfalls are the highest-priority performance problem.
An async waterfall occurs when API calls that don't depend on each other run sequentially because the code is structured with chained awaits:
// Waterfall: each call waits for the previous one
const user = await fetchUser(userId);
const balance = await fetchBalance(userId);
const transactions = await fetchTransactions(userId);
Each call waits for the previous to complete, adding latency for every independent request.
If you are working on a fintech dashboard that loads user data, account balance, and recent transactions, this can mean hundreds of milliseconds of unnecessary waiting on every page load.
The fix is parallel execution for independent requests:
// Parallel: all three calls start simultaneously
const [user, balance, transactions] = await Promise.all([
fetchUser(userId),
fetchBalance(userId),
fetchTransactions(userId)
]);
This change produces the largest improvement in real-world load metrics for the least engineering effort.
In fintech, you have the added benefit of reducing API calls on load, increasing the ROI on this performance change.
The official React documentation is very clear that you should never store state that can be calculated from existing state or props. Duplicate state creates synchronisation problems.
In fintech components, this pattern shows up as storing a formatted version of a balance alongside the raw balance, storing a derived "total" field alongside the line items that produce it, or storing a transaction status label alongside the status code it represents.
When one changes and the other doesn't update correctly, the component displays incorrect financial data.
The correct approach is to store the raw value in the state instead, and then derive the formatted or computed value during rendering.
// Avoid: duplicate state that can get out of sync
const [balance, setBalance] = useState(0);
const [formattedBalance, setFormattedBalance] = useState('$0.00');
// Prefer: derive during render
const [balance, setBalance] = useState(0);
const formattedBalance = formatCurrency(balance, 'USD');
Similarly, useEffect hooks that exist only to calculate derived values from state are usually unnecessary and create timing issues. If a value can be computed during rendering, then you should go with that option.
Class components can be considered legacy in 2026.
The React documentation no longer recommends them for new code, and most of the React ecosystem, like testing tools, state management libraries, and server component patterns, is oriented around functional components and hooks.
Hooks give functional components access to state and lifecycle behaviour without the complexity of class syntax.
For fintech codebases specifically, custom hooks are the right pattern for encapsulating reusable logic.
For example, a useAccountBalance hook handles fetching, caching, and error state for a balance query, while a useKycStatus hook manages the state machine for a KYC verification flow.
Custom hooks can help you keep components clean and make logic testable in isolation. This is very advantageous when compliance-critical behaviour needs to be verified independently of the rendering layer.
Key hook practices that hold in fintech:
Defining a component inside another component's render function creates a new component type on every render.
React unmounts the previous component and mounts the new one, which effectively destroys its state and causes unnecessary DOM operations.
// Avoid: TransactionRow is redefined on every render of TransactionList
function TransactionList({ transactions }) {
const TransactionRow = ({ transaction }) => (
<div>{transaction.amount}</div>
);
return transactions.map(t => <TransactionRow key={t.id} transaction={t} />);
}
// Prefer: define outside the parent component
const TransactionRow = ({ transaction }) => (
<div>{transaction.amount}</div>
);
function TransactionList({ transactions }) {
return transactions.map(t => <TransactionRow key={t.id} transaction={t} />);
}
If you are frequently updating data in things like live transaction feeds or real-time balance changes, then this pattern causes visible performance degradation.
React renders every item in a list into the DOM by default. A transaction history with 500 entries, a ledger view with thousands of rows, or a multi-account dashboard with many line items will render all of them simultaneously.
This consumes massive amounts of memory and can create layout performance problems.
Virtualisation libraries like react-window and react-virtualized solve this by rendering only the rows currently visible in the viewport, and recycling DOM nodes as the user scrolls, giving you consistent rendering performance regardless of the total list length.
We often see long lists in fintech applications. Common examples include transaction histories, account statements, audit logs, and portfolio holdings. In anything longer than 50-100 items, virtualisation is worth implementing from the start rather than retrofitting later.
The traditional React folder structure organises files by technical type:
/components
/hooks
/utils
/styles
This produces a codebase where the files related to a single feature are scattered across several directories.
When a compliance requirement changes, the relevant files need to be located across the entire codebase.
A domain-driven structure is organized by feature instead:
/features
/auth
/transactions
/kyc
/payments
/account
All the components, hooks, utilities, and tests for a feature live together. When a compliance requirement changes, everything relevant is in one place.
dangerouslySetInnerHTML bypasses React's XSS protections by injecting raw HTML directly into the DOM.
This creates a security risk that may surface in penetration testing and compliance audits.
If rendering HTML from an external source is genuinely necessary, sanitise it with a library like DOMPurify before injecting it.
The broader security practice here is to avoid storing any sensitive financial data in localStorage or sessionStorage, where any JavaScript running on the page can access it.
Session storage for authentication state should use httpOnly cookies via the back end rather than browser storage accessible to client-side scripts.
Code splitting loads only the JavaScript that a user needs for the current view, rather than sending the entire application bundle on first load.
If your products have separate sections for account management, transaction history, compliance documents, and settings, loading all of that JavaScript upfront imposes an unnecessary cost on every initial page load.
React.lazy and Suspense handle this declaratively:
const TransactionHistory = React.lazy(() => import('./TransactionHistory'));
const KycOnboarding = React.lazy(() => import('./KycOnboarding'));
function App() {
return (
<Suspense fallback={<LoadingSpinner />}>
<Routes>
<Route path="/transactions" element={<TransactionHistory />} />
<Route path="/onboarding" element={<KycOnboarding />} />
</Routes>
</Suspense>
);
}
Bundle size reduction can be incredibly beneficial if you are targeting users in markets with variable network quality.
Code quality tooling enforces standards automatically rather than relying on code review discipline. If you are building compliance-critical software, the cost of a missed review comment is higher than in most products.
ESLint with the React plugin catches common mistakes at write time. Some examples we see often include missing dependency arrays in useEffect, incorrect hook call patterns, and potential XSS risks from unsafe HTML injection.
Prettier removes formatting debates entirely and produces consistent code across all contributors.
In fintech codebases where multiple engineers and potentially outsourced teams contribute to the same codebase, consistent tooling reduces the cognitive overhead of context-switching between different code styles and makes code reviews faster and more reliable.
Configuring both tools in the repository and running them as part of the CI/CD pipeline ensures that standards are enforced at every commit rather than applied selectively.
Two architectural trends carry specific implications for fintech teams.
By far, the biggest consideration for fintech teams is the production experience of React developers.
Engineers who have worked with real-world situations understand these best practices and have likely seen the result of what happens when they are ignored.
Trio carries pre-vetted, senior-level React developers, who have worked on financial products before. If you are ready to expand your team, book a discovery call.
Expertise
Subscribe to our newsletter
Related
Content
Continue Reading
