this might be something you are interested in:
http://www.howtoforge.com/chrooted_ssh_howto_debian
i was thinking of this myself.
although i guess it's a bit different to what you want to do.
anyway, you could make the user in a group that is unique to her (i.e.) she has no group access. Then she will only ever have 'other' file permissions.
depends on how tight your permissions are...