Sounds reasonable, but each token_type_embedding would have to be kept private like a private key , and each model tuned to a users private key