I'm mostly guessing here, but as an encryption principle, I would assume that KPM is not 'storing' your key at all. The whole point of encryption is that you don't store the decryption key anywhere. When you enter a key, it attempts to use that as a decryption input, and if it fails (gives garbage output) then the key must be invalid. I may be wrong, feel free to tell me.