You have to consider the actual threats you are concerned about. Self loss, home invasion, hacking. if your seed is generated offline and never sees a computer, hacking is not an issue. Self loss is probably the biggest risk. Make sure you take your time and test your setup. Prove to yourself you wont lose your funds if the seed is wiped from the device for example. Home invasion is trickier. At least if the coldcard is stolen it is expensive to extract the seed. Gives you time to get your funds to a new seed before the thief cracks your device. Otherwise you can create a setup that makes it impossible to spend without also getting keys at another location. There are duress and brick me pins. Many options it can be daunting. Focus on mitigating the threats you think are most lilely to happen to you.

And keep in mind, if you are just cold storing funds, and not spending for now, you dont even need to keep your seed stored in your device at all. Coinkite calls it a signing device, and that is appropriate. If you dont have anything to sign, its not necessary to keep the cold card with your seed loaded. Of course seed should be on metal plate. Maybe passphrase.

So much to consider.