The pin is typed that way:
Client displays:
OOO
OOO
OOO
trezor display (changes every time):
954
128
367
So no chance for keyloggers.
Oh - I hadn't picked that up (must have missed some posts) - must admit now it is looking a lot better than I had thought being used as a general authentication device.