Fingerprint scanners (if used) should only be one part of the login/data access. It should always be followed up with a PIN/Password. Now you have two factor, what you have and what you know. So if what you have is compromised, you still cannot get in. AND you put tighter restrictions on what you know. Mistype password twice, account locked out..