Not really. 2FA or other “strong” authentification for requesting the auth-code is common.
The receiving registrar doesn’t care at all.
Likely the only check there is, is fraud protection and that is them protecting themself against payment frauds and not you/the domain.
No. Europe has better cars for this: Pritschenwagen (who doesn’t love German words? So creative …).
Take a look at the VW crafter: https://www.volkswagen-nutzfahrzeuge.de/de/modelle/crafter.html