that's a fascinating construction ! to be honest i can't immediately say how fool-proof it is, but it won't make things less secure than when the generating party sees the full private key 

 It's equivalent to grinding through unhardened paths in an HD wallet whose xpub you know, then telling the wallet owner "wpkh(xpubBLAH/3568/4528/6426) has a nifty pubkey"