Home
iOS
Enforcing Face ID for email apps: worth it or overkill!

Enforcing Face ID for email apps: worth it or overkill!Solved

Participant

4 weeks ago

We’re debating whether to enforce Face ID for corporate email apps. From a security standpoint, does it really add much over a strong device passcode? Or is it more of a “nice to have”?

Replies (8)

Marked SolutionPending Review

benjay

Participant

4 weeks ago

Marked SolutionPending Review

We had the same discussion internally.

On paper, the passcode already secures the device. But in practice, the risk is what happens after the device is unlocked.

Marked SolutionPending Review

ethan_

Participant

4 weeks ago

Marked SolutionPending Review

Exactly. Most real-world scenarios aren’t about breaking the passcode — it’s things like a device left unlocked on a desk, someone handing their phone to a colleague briefly, shared passcodes (happens more than people admit).

That’s where app-level biometrics help.

Marked SolutionPending Review

lucaas

Participant

4 weeks ago

Marked SolutionPending Review

Yeah, the unlocked device scenario is what concerns us the most.

Marked SolutionPending Review

benjay

Participant

4 weeks ago

Marked SolutionPending Review

@lucaas, think of this setup as an extra layer of protection. The passcode gets you into the device. Face ID then adds a check for sensitive apps. So, even if the first layer is bypassed (intentionally or not), the second layer still holds.

Marked SolutionPending Review

ethan_

Participant

4 weeks ago

Marked SolutionPending Review

Another angle is usability. With Face ID, authentication is almost instant when opening apps like Outlook, so users don’t really feel it as a restriction. With passcodes, even though they’re secure, entering them repeatedly to access apps can feel a bit slower compared to Face ID.

So, enabling biometrics at the app level not only strengthens access control but also keeps the experience smooth for users who are accessing email frequently.