So far I haven't seen a single major company doing phone based (insecure) 2fa not use the number for marketing, data abuse, etc.

Non-standards based "authenticator" dedicated apps phone home and spy on you. Intentionally trying to break or block actual TOTP.