Maybe it's an age thing ...
but my bar for actually investing time and effort into anything has been climbing for a while.
I am not ignorant of the privacy issues, regulatory concerns, and data protection issues. But at some point I find myself saying "but does it really matter ?"
On the scale of things I am going to invest my last few remaining breaths on this planet on, Facebooks abuse of 2FA is far below (for example) poverty, social inequality, the future for my children, and how often my bins get emptied.
The only reason I am commenting here is that I believe even a flaky spammy 2FA solution is light years ahead of no 2FA solution, and that it's probably the next step after not reusing passwords to go up a level of security. Personally I think an app-linked 2FA is probably the right level ... Authy, Google Authenticator etc etc.