On‑Device vs Server‑Side Matching

Design choice where biometric matching happens locally on a user’s device (with templates kept device‑bound) versus centrally on a server. On‑device improves privacy and reduces breach scope; server‑side can enable centralized management and large‑scale search (1:N).