Storing the biometric data securely in the digital enclave only covers half the problem. The other half is in the form of falsifying said biometrics to gain access to a device, or physically forcing the actual person to unlock it against their will. With keys that are only stored in my mind, I have the ability to consciously decide that access should or should not be granted.
Studies have shown that amongst human subjects there's a really strong correlation between an economic agent having a gun pointed by someone else at their heads and conciously making choices that posit a positive utility increase for the ones holding the gun.
most govt implementing face identification is NOT on device.
all the on-device stuff was just to ease the tech literati who probably is still 12 years away from being impacted by the actual tech doing the damage, since those are for the poor and foreigners first