That is all dependent on a) remembering the password, b) not getting corrupted, c) not getting hacked with a key logger and d) not getting ransomed. We lost data because our backup included the corruption. Unless you use the data frequently, it’s probably best to just take it off the computer. You can’t ransom a drive that isn’t attached.
Zip it with a password. Sometimes the best defense is to just take it off the machine.
I rebuild my systems at work about once a year. I quit doing cloning and just install everything I want.
I am an attorney and need to work with that data every day; therefore, storing data off my computer is not an option. Remembering the password is not an issue. The threat of keyloggers is very small given how I use my computer and virus protection. It is a system that has worked very well for me for years now.