Before identifying red flags in the application, I gathered qualitative information through desktop research, discovery workshops, and interviews.
Understanding why certain solutions were integrated helped avoid flagging intentional elements, especially given the complex data security requirements of FinTech products.
Team interviews and discovery workshops also helped me understand the product team's challenges. Below is an extract from an interview: