> and that they provably cannot track.

That's not easily provable though.

Any token given that way contains some amount of encrypted payload.

That secret payload may contain uniquely tracking numbers.

Even the encrypted payload itself, if treated as an opaque string, can be used for tracking if they decide to log it when they deliver it to you, and when the website where you use the token passes it back to the government auth service.

You need to replicate the UX of a stack of pile of cards at the grocery store, that's not really possible in digital space.