It seems someone at Arlo is lying, chatt or community 
“As part of our efforts to continually evolve and further strengthen our privacy and security practices, Arlo announced it will now require all users to use two-factor authentication when logging into their Arlo account. The new security mandate will go into effect for new users in Q2 of 2020, and will require existing Arlo users to enable the feature on their current Arlo accounts by end of year. While Arlo has strongly encouraged its users to enable two-factor authentication since its introduction, Arlo believes requiring this added layer of security is yet another measure we can take to help our users safeguard their accounts and their data”
UPDATE:
I’ve got this email from Arlo a minute ago. They are sorry for the wrong information I got when I contacted the support…
Please know that the 2FA or most likely called “two-steps verification” is really do required as we discussed this with our team and already been raised this query to our appropriate department, they said that 2FA is really required by the end of the year, we would like to apologize for the information that we relay to you. That’s why this email is for us to correct the said information we had provided.
