Woocommerce API Token Access Level

I have a general question about Woocommerce rest-API and user access-level.

We start developing a customer android app base on Woocommerce-API and we using the Woocommerce token (read/write).

But the problem is that token gives access to the whole information/data of Woocommerce (all customer orders, products,…) and if the user decompiles APK and finds the token, then he/she access to whole data of the website.

So, the question is how to restrict access-level of the API base on the user role in the token.

for example, customer level token can only see her own orders, product, … and any access defined on Woocommerce customer-role.