Think seriously about using iCloud. Any service that can be recovered using recovery questions is only as secure as the answers to those questions.

NYT published an article a couple years ago where a (white hat) hacker looked up the reporter's information (e.g. LinkedIn, high school graduation, ship to address in their public Amazon wish list, etc.), called the "I forgot my password" line, recovered their iCloud account, and remotely locked their Mac and iPhone during the interview.

That's not knocking Apple; I'd imagine there's a Google equivalent. As u/XtremePhotoDesign suggests, it's probably wise to not use the same credential trust for answering a text in a bar and for bank transfers.