Gotcha, I was getting the impression it would be Face, Finger and PIN all have the same limitation.
And the PIN unlock limitation is because you need to access the server to verify that that is correct?
I think provding the options page makes that really clear (it can be a bit convoluted to explain!) then I wouldn’t have an issue with those two approaches.
Maybe the security control page would be better if you actually had three options:
- Check with PIN every 90 days
- Check with PIN every app open (disclaimer: no internet bad)
- Check with FaceID / TouchID when opening the app and connected to the internet
(Rather than the Face/Touch option being a separate menu)