The “first apparatus” disclosed is an ergonomic, removably-attachable biometric user authentication module, attachable onto a wristwatch band (or other surface) directly proximate to a user. This first apparatus includes (1) an attaching subsystem (e.g., bendable tabs, Velcro™ straps, etc.); and (2) a biometric authentication subsystem module. The first apparatus attaches onto any convenient “target” surface, but wristwatch bands are ideal for many users. The invention method, is a secure wireless protocol for communicating “successful biometric authentication” messages from the first apparatus, to a verification transceiver/reader (a “second apparatus”) which grants or denies user(s) access to transaction(s) and/or controlled resource(s), facilities, etc. The transceiver/reader is an “access governance” device that ensures only authorized users can access controlled (e.g., financial, physical, logical, etc.) resources. The system of the invention combines these first and second apparatuses and this method, plus includes embedded software for granting user access to controlled resources.