Not every record deserves this but the most sensitive data could. The finger print scan can be hacked so perhaps allowing banking records to require a response before unmasking a password would be helpful. There have been a couple of recommendations to use a specific methodology but I thought the suggestion should be generic, hence this post.