1) If the system partition is not encrypted, it would be vulnerable to anything that a normal Windows installation would be vulnerable to. That may include, but is not limited to, simply booting from a Linux Live disk, and copying the key data from your documents folder. There are a multitude of methods to try to circumvent the Windows authentication.
That being said, there should not be a way to obtain the passphrase for the private key unless that passphrase is cached, and you can set the passphrase to only be cached for a limited time, or for your Windows session. If you have a sufficiently hard-to-guess passphrase, it should still offer decent security even if the key data was compromised.
You can also look at using a token or smart card for key storage. If you store the private key on the token, then encrypt the drive to that keypair, you would need the token as well as the passphrase (or PIN) to unlock the partition. Since the private key is on the token, it must be physically present to authenticate.
List of compatible tokens: http://www.symantec.com/docs/TECH148839
2) We do not currently support TPM. It was only offered for Windows XP on a limited number of systems, and has since been discontinued.
3) The standard drive encryption recovery iso will operate in 16-bit mode. See the following for more information:
http://www.symantec.com/docs/HOWTO92296
Faster options include building a WinPE disk (http://www.symantec.com/docs/TECH200751) or slaving the drive to another system that also runs Symantec Encryption Desktop.
4) Imaging of an encrypted drive is not supported. We recommend running incremental backups while Windows is running and the drive is unlocked, which should yield unencrypted backup data. While it is unsupported, I have seen cases of backup solutions that have been successful if they can do a bit-by-bit copy and restore. If you run into issues with the backup or restore process, however, Symantec will not be able to help.
5) The license is perpetual. The support contract has to be renewed to either get help with the product for any reason, or obtain the latest maintenance packs/bug fixes. Renewals can be handled here:
http://www.symantec.com/products-solutions/licensing/renewals/
or you can call Customer Care at 1-800-721-3934 and they can help get you pointed in the right direction.
I hope this helps, and let me know if you have any additional questions.