For Those Who Use The ECG And 2FA

Do you have to log into the mobile app every time?

No

Do you have to log into the website every time?

No

Why does Garmin require this 2FA, when all other device manufacturers that have ECG don't require it?

¯\_(ツ)_/¯

How many times?

Can you give a little more detail?

Sorry, was a bit lacking on the response

I'm on Android and can't remember the last time I had to login to Garmin Connect Mobile (GCM).  

Garmin Connect Web (GCW) there does seem to be a 2 week(ish) login cycle similar to what I see with Strava Web.

How many times?

The logging in / out frequency is the same regardless whether you use 2FA or not. It depends on several factors, including how often you access Garmin servers. If there is a longer delay, the system may log you out. Also, if there are broken cookies, it may log you out more frequently. I had troubles at certain period, when I have been kicked out several times per day. Recently it happens once or twice per week. As for the app - I think it never happened to me to be forced to sign in again (I am using both Android and iOS).

Thank you.

Have you considered setting up a second GC account (maybe on a different phone) that has 2FA enabled in order to be able to have the ECG data available somewhere else than just on the watch itself?
I need this scenario (2 phones with 2 separate GC accounts for the same unique watch) for another purpose and came across this mandatory permanent 2FA issue while searching for info on the possibility of this scenario, and as there seems to be a solution for me (2 phones, 2 accounts, 1 with and 1 without 2FA, and just unpairing and re-pairing the watch with the phone I'm going to use from that momnt on), I thought it might also work for you.

Another idea:
While using the ECG on the watch without the ability to sync the measurements to the app, can one retrieve the data from the watch using the USB connection, like accessing other parameters via the FIT files?