Well what I mean is you could pre generate a few addresses and store them elsewhere if you wanted, you dont have to. But if you did, you wouldn't need your key loaded on the device if you didnt want to. Or for example, you could use a public key watch only wallet on Sparrow to generate addresses without your private key being exposed at all since addresses are derived from the public key, not the private key.