If your seed phrase is compromised while the Hardware Signer is active, your funds still remain protected.
The Hardware Signer relies on your biometric data, such as fingerprint or face ID, to authorize transactions.
This means that even if an attacker recovers your account using the stolen seed phrase, they cannot transfer funds without your biometric authorization.
The only action they can take is to request the removal of the Hardware Signer, but this process has a 4-day delay.
In the meantime, you should set up a new account and move your funds there for better safety.