The Reality of Low-Code in Enterprise: What Works and What Does Not

Low-code platforms have been promising to democratise application development for two decades. In 2022, the category has matured enough to have a clear picture of where low-code genuinely works and where it falls short.

Where low-code delivers

Low-code platforms deliver genuine value for: internal line-of-business applications with straightforward data workflows (form-to-database-to-notification patterns), automating manual processes that have clear business rules, and extending existing enterprise systems with lightweight front-ends. Microsoft Power Platform, Salesforce Flow, and ServiceNow workflows are enterprise examples of low-code that operates at scale.

The maintenance cliff

Low-code applications often have a maintenance cliff: they are quick to build initially and increasingly difficult to maintain as requirements grow. Visual flow editors that are intuitive for simple logic become unreadable for complex business rules. Version control for low-code configurations is either non-existent or immature. The team that builds the application might not be the team that maintains it five years later.

The governance challenge

Shadow IT risk is higher with low-code than with traditional development because the barrier to building and deploying an application is lower. Finance teams build data processing apps in Power Automate that operate on sensitive financial data without IT review. Marketing teams deploy external-facing Salesforce flows that access customer data without security assessment. The governance challenge is not stopping people from being productive but ensuring that their productivity does not create risk.

Fusion development teams

The model that works for enterprise low-code is fusion development: professional developers and business power users working together. The developer builds reusable components, connectors, and governance guardrails. The power user assembles those components into applications that meet their specific needs. Neither group is operating outside their competence, and the result is applications that are both fast to build and maintainable.