1. 2-of-3 multisig. I mean actual multisig with 3 cosigners, where 2 are required.
2. cold storage (24 words seed phrase + passphrase).
In my humble opinion, for the average Bitcoiner, the option (2) is more than enough. It's good to understand how the option (1) works and give it a try, but option (2) is much much much simpler, both in terms of back-up and in terms of usage.
Yes but cold storage single sig I am afraid that someone finds my hidden location
Let's say you hide the 24 words on a piece of paper in a super secret place.
Let's say I find the piece of paper (because I am a super clever detective).
What can I do then? I will try to restore the wallet and I will see that it is empy. Why? Because you will have added a passphrase that ONLY YOU know.
So even if I stole your seed phrase, I would also need the passphrase.
P.S. The passphrase is a part of your wallet. It is not a password that is related to the application that you use. It is attached to your seed phrase, in order to create the seed for your wallet.