Utilizing biometrics as an authentication token is a big mistake.
You lose control over your auth token, you are essentially screwed. If someone manages to snag the data that defines your particular fingerprint, face, voiceprint, etc...
Then you can't use that again for authentication, ever.
Its out of your control, and since you can't change your fingerprints, voice, face very easily -- it locks you out of using those methods pretty quickly.
I don't support tech that makes this mistake of using such biometric inputs. And you shouldn't either.
Well put. The risks outweigh the benefits. Private keys exist for a reason without the need for personal data.