Good question. I think it’s a double edged sword perhaps. On one hand you’ll have fewer account breaches due to stolen passwords. On the other hand it may be easier to force people to unlock their accounts. If a judge orders you to log into your account, you have plausible deniability in saying you forgot your password. But with biometrics they’ll just force you to put your finger on there or look at the phone and done.