There are secure ways to transfer the key that preserve the properties that make it useful as two factors in one. Basically, the device will only release the key in an encrypted fashion readable by another device able to make the same guarantees, after the user has used that device to authenticate to the first device using the key being transferred. A backup works the same way.