I prefer Authy. It would be something ideal as an option and not requirement. For personal use, I could see not wanting a password change every 30 seconds, but when you have hundreds of client credentials then sms and email aren't as secure as I'd prefer.

This should also include support for U2F. U2F is an open authentication standard that enables internet users to securely access any number of online services with one single security key instantly and with no drivers or client software needed.

2 factor is available in SplashID. It can be enabled from the web app. Email and SMS delivery options are available. For SMS the users number should not be registered in their country's 'do not call' list, else the 2 factor code will not reach the user.

I don't mind which app - just that 2-factor is implemented.

Doesn't need to be Google Authenticator. Simple multifactor is fine, and actually better as not everyone uses the Google app.

Fingerprint recognition would be good on mobile devices that support it but google authenticator would be too inconvenient. If we're talking about Splashid on a phone or tablet, a paired wearable could be used to provide a second factor - password on phone plus PIN on watch? For desktop clients, google authenticator would be good.

2-factor is becoming standard across all security services. Idely user should be able to choose whether it is fingerprint, Yubikey, google auth or authy.

This would be good, but only on a record level. I would not want to have to load the authenticator app each time I needed to look up a password. But it would be great for bank passwords and higher security types like that.