Within the EU, there is a law that mandates accessibility without a smartphone. The banks will sell you some proprietary dotcode scanners then which are all manufactured by the same crappy UK company (as a sidenote).

But the upside is: they work offline, and makes your 2FA app unhackable because it's not an app and instead a physically separate device.

If you're as serious about your opsec as I am, I heavily recommend to not use apps on smartphones for banking.