2FA is just a second password and has nothing to do with encryption. Can simply be removed.
They could bypass this authentication without problems, if they want. I lost my phone and my google business account got restored regardless of 2FA. It’s just a button for the support. The problem is the identification, especially of private customers (dunno if they would even do that).
Encryption passwords aren’t time-based either, they must be static.
My adventurers (who live with me currently) already learned two things:
I was never really a power-hungry guy, but nothing gives a more powerfull feeling than grinning and throwing the dice while my adventurers wait for wtf is happening.
On that note, the goose of war meme was quite inspirational.