I used to be of the “nothing I care about on my phone”, but that was a decade ago. Nowadays the risk isn’t what’s on your phone, it’s what your phone gives them access to via 2FA password resets.
shh1313: I hope you typed that excerpt in; otherwise I’d be very suspect of a .gov site that can’t spell “HIPAA” correctly.
No. I absolutely should, because access to my phone means access to my Gmail which means access to all my other accounts. I still don’t though, 'cause I’m super lazy.
Mine is just barely locked, just a single swipe up, enough to prevent pocket dialing.
My phone is locked. Not with a PIN, just with a simple pattern.
I keep it locked, not for security reasons, but because my small children love to play with it. And sometimes call people, whether intentionally or inadvertently.
Sometimes, when I’m working late (well, back when I wasn’t working from home), my phone would ring and it would be my oldest daughter (then six). The first thing I would say to her was “does Mommy know you have her phone?”
No. But I need an access code each time I access my bank, and that rings through on a different phone, which remains at home. So I assume that mitigates the risk.
Of course. I’m kinda surprised anyone doesn’t.
A fingerprint or face, unlike a PIN are usable and accessable from an unconscious person which is at least part of why those methods are less secure.
My smartphones have always been locked with PINs and my current one also is set up for fingerprint too. Though it will occasionally only accept the PIN instead of my fingerprint for security reasons.
Yes, I consider that part of the possibility of being forced, which I mentioned. In addition to unconsciousness, I think, there are other, more disturbing options as well.
Same here and we have no choice as it is forced through MAM. Mine is locked with biometrics as well as a PIN.
Even before I added our company data, I had the same policy.
Mine requires a PIN after three failed fingerprint attempts. 10 password fails resets the phone. No facial recognition.
I’m pretty sure that facial recognition won’t work with closed eyes so it would not work for an unconscious person.
However, a fingerprint does work for an unconscious or sleeping person, as tragically demonstrated in the real world.
Okay so it works for an unconscious person. How about a dead one? What about a finger no longer attached?
Me too - I’m not particularly worried about the information but my husband keeps butt-dialing ( apparently because he has auto-lock set for too long.) and I don’t want to do that.
From my brief research, it looks like apparently you can, provided you have the right tools, and you act quickly enough after the death of the person or the severing of their finger.
Thanks. Good to know. Might come in handy.
I keep my phone locked for one reason only: it’s too easy for something to get pressed accidentally, which I find a huge PITA. It not only auto-locks, but I manually lock it every time I put it back into a pocket.
The fingerprint plot point turns up every now and then in a cop show. The really creepy variation is when the bad guy takes out somebody’s eyeball to use with an iris scanner. 
Of course I do. If it gets stolen there is access to all my accounts and Apple Pay. You could just tap the phone and pay for anything until my money runs out.
Not because of the fear of being hacked through amputation, but I recently disabled fingerprint lock/unlock and went back to a PIN, because the phone periodically decided it didn’t recognize my fingerprint and locked the phone after several tries, making me wait before subsequently allowing me back in.
This could have been problematic if I needed to use the phone in an emergency.