There are a few discussion threads about Touch ID and Fingerprint and how you use this to log in, and also the suggestion that you might use Touch ID for actions within the app. We wanted to achieve a model where as a customer if you have just unlocked your phone, when you tap the Starling app logo, we don’t need to ask again for you to authenticate as you just did.
We realise however that this has created some inconsistencies, for example you haven’t known how to enable it, and so we want to simplify the experience for you.
What we are thinking is this.
When you create an account
• When customers who have Touch ID/Fingerprint capability create their accounts, they will be asked to allow Touch ID/Fingerprint.
• If, as a customer, you allow Touch ID/Fingerprint the app will default to requiring authentication to log in, and you’ll create a passcode as a backup.
• If you skip enabling Touch ID/Fingerprint, you’ll be asked to create a passcode and this will be required for log in.
• Payments under £1,000 to existing payees will not require additional authentication.
• Payments over £1,000 will continue to require your password.
After you have an account
• Once you have an account you can then choose to manage how you use Touch ID/Fingerprint in Login & Settings.
• You can choose not to require Touch ID/Fingerprint to log in (if you prefer to access your account more easily). With this option, because your app is more open, the app will default to requiring Touch ID/Fingerprint to authorise all payments (in other words, under £1,000 as well). For your account security you won’t be able to change that setting.
• We’ll remind you regularly if you have Touch ID/Fingerprint to log in disabled, to make sure you know it’s more secure to enable it.
Below are some screenshots (for iOS for now) of how this will look in app. Please let us know your thoughts. In particular, we really want to understand whether you understand how changing your log in preferences will affect the privacy and security of your data?
Would you be likely to have Touch ID/Fingerprint enabled or disabled for log in?