I mean if you’re happy to type & remember PINs all over the place it’s your call. I would consider that extremely paranoid (and I consider myself paranoid but this is a whole new level IMO).
But my argument is that we should let people decide for themselves what kind of security they want, and not perpetuate the myths of bullshit legacy-bank-grade security theatre (it’s even counter-productive because it gives a false sense of security; I’ve seen idiots installing all kinds of malware and saying “but my bank had a PIN so it’s secure, right?”).
If people still decide to enable fingerprint/PIN after this then it’s their choice, but it needs to be an informed decision, not “well every other shit bank does it so I must do it right?”, and it should be made clear that protection on the app is not a silver bullet and you’re still vulnerable if your device is compromised.
I used to be an app developer people borrowed my phone all the time.
Maybe you’re trying to use the wrong tool for the job and expect everyone to conform to your use-case? You’re using a single-user operating system as a multi-user one… no wonder not all apps support (nor plan to support) this by offering in-app PINs & whatnot. Not to mention, at the end of the day, this is still a fairly narrow use-case and not everyone (maybe less than 1%) of Monzo’s user-base routinely give away their phone as a test device to debug apps on.
I use Airmail on iOS