From 17111e7098462288ffca4546de948df079d56dde Mon Sep 17 00:00:00 2001
From: mqmalagris <63169613+mqmalagris@users.noreply.github.com>
Date: Sat, 25 Apr 2026 21:19:10 -0300
Subject: [PATCH 1/3] feat: implement account and domain deletion functionality
 with confirmation prompts

---
 apps/web/src/components/AccountView.svelte   | 43 +++++++++---
 apps/web/src/components/DomainManager.svelte | 17 +++++
 packages/shared/src/api-client.ts            | 14 ++++
 packages/shared/src/i18n/locales/en.ts       |  6 ++
 packages/shared/src/i18n/locales/es.ts       |  6 ++
 packages/shared/src/i18n/locales/fr.ts       |  6 ++
 packages/shared/src/i18n/locales/pt-BR.ts    |  6 ++
 packages/shared/src/types.ts                 |  1 +
 services/internal/domain/repository.go       | 12 ++++
 services/internal/domain/service.go          | 22 ++++++
 services/internal/handler/api.go             | 73 ++++++++++++++++++++
 services/internal/user/repository.go         | 12 ++++
 terraform/api_gateway.tf                     | 12 ++++
 13 files changed, 219 insertions(+), 11 deletions(-)

diff --git a/apps/web/src/components/AccountView.svelte b/apps/web/src/components/AccountView.svelte
index bbed7f9..deee4b6 100644
--- a/apps/web/src/components/AccountView.svelte
+++ b/apps/web/src/components/AccountView.svelte
@@ -102,19 +102,17 @@
     }
   }
 
-  onMount(async () => {
-    initLocale();
-    await initUser();
-    loadInboxes();
-
-    function onVisibilityChange() {
-      if (document.visibilityState === "visible") {
-        refreshUser();
-        loadInboxes();
-      }
+  function onVisibilityChange() {
+    if (document.visibilityState === "visible") {
+      refreshUser();
+      loadInboxes();
     }
-    document.addEventListener("visibilitychange", onVisibilityChange);
+  }
 
+  onMount(() => {
+    initLocale();
+    initUser().then(() => loadInboxes());
+    document.addEventListener("visibilitychange", onVisibilityChange);
     return () => document.removeEventListener("visibilitychange", onVisibilityChange);
   });
 </script>
@@ -347,6 +345,29 @@
           <VanityInboxForm />
           <DomainManager />
         {/if}
+
+        <!-- Danger Zone -->
+        <div class="bg-ember/5 border border-ember/20 rounded-sm p-5 mt-8">
+          <h3 class="text-ember text-sm font-display tracking-wider mb-3">{t("dangerZone")}</h3>
+          {#if user.isPremium}
+            <p class="text-muted text-xs font-mono mb-3">{t("cancelSubscriptionFirst")}</p>
+          {/if}
+          <button
+            onclick={async () => {
+              if (user.isPremium) return;
+              if (!confirm(t("deleteAccountConfirm"))) return;
+              if (!user.apiKey) return;
+              await api.deleteAccount(user.apiKey);
+              logout();
+              window.location.href = "/";
+            }}
+            disabled={user.isPremium}
+            class="px-4 py-2 text-xs font-mono tracking-wider border border-ember/40 text-ember
+              hover:bg-ember/10 transition-all duration-300 disabled:opacity-40 disabled:cursor-not-allowed"
+          >
+            {t("deleteAccount")}
+          </button>
+        </div>
       </div>
     {/if}
   </main>
diff --git a/apps/web/src/components/DomainManager.svelte b/apps/web/src/components/DomainManager.svelte
index d970d07..0b32964 100644
--- a/apps/web/src/components/DomainManager.svelte
+++ b/apps/web/src/components/DomainManager.svelte
@@ -52,6 +52,17 @@
     }
   }
 
+  async function deleteDomain(domainName: string) {
+    if (!user.apiKey) return;
+    if (!confirm(t("deleteDomainConfirm", { domain: domainName }))) return;
+    try {
+      await api.deleteDomain(domainName, user.apiKey);
+      domains = domains.filter((d) => d.domain !== domainName);
+    } catch {
+      // silent
+    }
+  }
+
   async function checkDomain(domainName: string) {
     if (!user.apiKey) return;
     try {
@@ -124,6 +135,12 @@
                   {t("checkVerification")}
                 </button>
               {/if}
+              <button
+                onclick={() => deleteDomain(domain.domain)}
+                class="text-[10px] font-mono text-ghost hover:text-ember transition-colors"
+              >
+                {t("deleteDomain")}
+              </button>
             </div>
           </div>
 
diff --git a/packages/shared/src/api-client.ts b/packages/shared/src/api-client.ts
index ffcb624..8478d54 100644
--- a/packages/shared/src/api-client.ts
+++ b/packages/shared/src/api-client.ts
@@ -97,5 +97,19 @@ export function createApiClient(baseUrl: string) {
         undefined,
         userApiKey
       ),
+
+    deleteDomain: async (domain: string, userApiKey: string): Promise<void> => {
+      await fetch(`${baseUrl}/domains/${domain}`, {
+        method: "DELETE",
+        headers: { Authorization: `Bearer ${userApiKey}` },
+      });
+    },
+
+    deleteAccount: async (userApiKey: string): Promise<void> => {
+      await fetch(`${baseUrl}/user/me`, {
+        method: "DELETE",
+        headers: { Authorization: `Bearer ${userApiKey}` },
+      });
+    },
   };
 }
diff --git a/packages/shared/src/i18n/locales/en.ts b/packages/shared/src/i18n/locales/en.ts
index dc1b71e..adafa78 100644
--- a/packages/shared/src/i18n/locales/en.ts
+++ b/packages/shared/src/i18n/locales/en.ts
@@ -145,4 +145,10 @@ export const en: Record<TranslationKey, string> = {
   forwardSaved: "Forwarding saved",
   forwardRemoved: "Forwarding removed",
   forwardPlaceholder: "you@email.com",
+  deleteAccount: "Delete account",
+  deleteAccountConfirm: "Are you sure? This cannot be undone. All your inboxes, domains, and data will be deleted.",
+  deleteDomain: "Delete",
+  deleteDomainConfirm: "Delete domain {{domain}}? Inboxes on this domain will also be deleted.",
+  dangerZone: "Danger zone",
+  cancelSubscriptionFirst: "Cancel your subscription before deleting your account.",
 };
diff --git a/packages/shared/src/i18n/locales/es.ts b/packages/shared/src/i18n/locales/es.ts
index f326695..ba2a157 100644
--- a/packages/shared/src/i18n/locales/es.ts
+++ b/packages/shared/src/i18n/locales/es.ts
@@ -145,4 +145,10 @@ export const es: Record<TranslationKey, string> = {
   forwardSaved: "Reenvío guardado",
   forwardRemoved: "Reenvío eliminado",
   forwardPlaceholder: "tu@email.com",
+  deleteAccount: "Eliminar cuenta",
+  deleteAccountConfirm: "¿Estás seguro? Esta acción no se puede deshacer. Todos tus inboxes, dominios y datos serán eliminados.",
+  deleteDomain: "Eliminar",
+  deleteDomainConfirm: "¿Eliminar el dominio {{domain}}? Los inboxes en este dominio también serán eliminados.",
+  dangerZone: "Zona de peligro",
+  cancelSubscriptionFirst: "Cancela tu suscripción antes de eliminar la cuenta.",
 };
diff --git a/packages/shared/src/i18n/locales/fr.ts b/packages/shared/src/i18n/locales/fr.ts
index c9bbe7c..29b2d07 100644
--- a/packages/shared/src/i18n/locales/fr.ts
+++ b/packages/shared/src/i18n/locales/fr.ts
@@ -145,4 +145,10 @@ export const fr: Record<TranslationKey, string> = {
   forwardSaved: "Transfert enregistré",
   forwardRemoved: "Transfert supprimé",
   forwardPlaceholder: "vous@email.com",
+  deleteAccount: "Supprimer le compte",
+  deleteAccountConfirm: "Êtes-vous sûr ? Cette action est irréversible. Toutes vos boîtes, domaines et données seront supprimés.",
+  deleteDomain: "Supprimer",
+  deleteDomainConfirm: "Supprimer le domaine {{domain}} ? Les boîtes sur ce domaine seront également supprimées.",
+  dangerZone: "Zone de danger",
+  cancelSubscriptionFirst: "Annulez votre abonnement avant de supprimer votre compte.",
 };
diff --git a/packages/shared/src/i18n/locales/pt-BR.ts b/packages/shared/src/i18n/locales/pt-BR.ts
index 703085b..b900470 100644
--- a/packages/shared/src/i18n/locales/pt-BR.ts
+++ b/packages/shared/src/i18n/locales/pt-BR.ts
@@ -143,6 +143,12 @@ export const ptBR = {
   forwardSaved: "Encaminhamento salvo",
   forwardRemoved: "Encaminhamento removido",
   forwardPlaceholder: "seu@email.com",
+  deleteAccount: "Excluir conta",
+  deleteAccountConfirm: "Tem certeza? Esta ação não pode ser desfeita. Todos os seus inboxes, domínios e dados serão excluídos.",
+  deleteDomain: "Excluir",
+  deleteDomainConfirm: "Excluir o domínio {{domain}}? Inboxes neste domínio também serão excluídos.",
+  dangerZone: "Zona de perigo",
+  cancelSubscriptionFirst: "Cancele sua assinatura antes de excluir a conta.",
 } as const;
 
 export type TranslationKey = keyof typeof ptBR;
diff --git a/packages/shared/src/types.ts b/packages/shared/src/types.ts
index c3231ed..64bcf8d 100644
--- a/packages/shared/src/types.ts
+++ b/packages/shared/src/types.ts
@@ -34,6 +34,7 @@ export interface RegisterResponse {
 
 export interface UserInfo {
   user_id: string;
+  email?: string;
   tier: string;
   role?: string;
   no_ads: boolean;
diff --git a/services/internal/domain/repository.go b/services/internal/domain/repository.go
index 0b0c85f..2fa5fc2 100644
--- a/services/internal/domain/repository.go
+++ b/services/internal/domain/repository.go
@@ -57,6 +57,18 @@ func (r *Repository) GetDomain(ctx context.Context, domainName string) (*DomainR
 	return &record, err
 }
 
+// DeleteDomain removes a domain record.
+func (r *Repository) DeleteDomain(ctx context.Context, domainName string) error {
+	_, err := r.client.DeleteItem(ctx, &dynamodb.DeleteItemInput{
+		TableName: &r.tableName,
+		Key: map[string]types.AttributeValue{
+			"inbox_address": &types.AttributeValueMemberS{Value: DomainPKPrefix + domainName},
+			"message_id":    &types.AttributeValueMemberS{Value: DomainSentinel},
+		},
+	})
+	return err
+}
+
 // UpdateVerificationStatus updates the verification status of a domain.
 func (r *Repository) UpdateVerificationStatus(ctx context.Context, domainName, status string) error {
 	_, err := r.client.UpdateItem(ctx, &dynamodb.UpdateItemInput{
diff --git a/services/internal/domain/service.go b/services/internal/domain/service.go
index bf2aa9e..2dca38e 100644
--- a/services/internal/domain/service.go
+++ b/services/internal/domain/service.go
@@ -146,6 +146,28 @@ func (s *Service) ListUserDomains(ctx context.Context, userID string) ([]DomainR
 	return domains, nil
 }
 
+// DeleteDomain removes a domain from DynamoDB and SES.
+func (s *Service) DeleteDomain(ctx context.Context, userID, domainName string) error {
+	record, err := s.repo.GetDomain(ctx, domainName)
+	if err != nil {
+		return err
+	}
+	if record == nil {
+		return ErrDomainNotFound
+	}
+	if record.UserID != userID {
+		return ErrNotOwner
+	}
+
+	// Remove from SES (best effort)
+	_, _ = s.sesClient.DeleteIdentity(ctx, &ses.DeleteIdentityInput{
+		Identity: &domainName,
+	})
+
+	// Remove from DynamoDB
+	return s.repo.DeleteDomain(ctx, domainName)
+}
+
 // IsVerifiedDomain checks if a domain is verified and belongs to the user.
 func (s *Service) IsVerifiedDomain(ctx context.Context, userID, domainName string) (bool, error) {
 	record, err := s.repo.GetDomain(ctx, domainName)
diff --git a/services/internal/handler/api.go b/services/internal/handler/api.go
index d2ab165..fd4a959 100644
--- a/services/internal/handler/api.go
+++ b/services/internal/handler/api.go
@@ -86,6 +86,8 @@ func (a *API) routeInternal(method string, parts []string) http.HandlerFunc {
 		return a.GetUserMe
 	case method == "GET" && len(parts) == 2 && parts[0] == "user" && parts[1] == "inboxes":
 		return a.ListUserInboxes
+	case method == "DELETE" && len(parts) == 2 && parts[0] == "user" && parts[1] == "me":
+		return a.DeleteAccount
 
 	// Domain routes
 	case method == "POST" && len(parts) == 1 && parts[0] == "domains":
@@ -94,6 +96,8 @@ func (a *API) routeInternal(method string, parts []string) http.HandlerFunc {
 		return a.ListDomains
 	case method == "GET" && len(parts) == 3 && parts[0] == "domains" && parts[2] == "verify":
 		return a.VerifyDomain
+	case method == "DELETE" && len(parts) == 2 && parts[0] == "domains":
+		return a.DeleteDomain
 
 	// Admin routes
 	case method == "POST" && len(parts) == 2 && parts[0] == "admin" && parts[1] == "inbox":
@@ -643,6 +647,75 @@ func (a *API) ListDomains(w http.ResponseWriter, r *http.Request) {
 	writeJSON(w, http.StatusOK, map[string]any{"domains": domains})
 }
 
+func (a *API) DeleteDomain(w http.ResponseWriter, r *http.Request) {
+	u, err := a.authenticateUser(r)
+	if err != nil {
+		writeJSON(w, http.StatusUnauthorized, map[string]string{"error": "unauthorized"})
+		return
+	}
+	if a.domainSvc == nil {
+		writeJSON(w, http.StatusInternalServerError, map[string]string{"error": "domain service not available"})
+		return
+	}
+
+	parts := strings.Split(strings.Trim(r.URL.Path, "/"), "/")
+	domainName := parts[1]
+
+	if err := a.domainSvc.DeleteDomain(r.Context(), u.UserID, domainName); err != nil {
+		if errors.Is(err, domain.ErrDomainNotFound) {
+			writeJSON(w, http.StatusNotFound, map[string]string{"error": "domain not found"})
+			return
+		}
+		if errors.Is(err, domain.ErrNotOwner) {
+			writeJSON(w, http.StatusForbidden, map[string]string{"error": "not your domain"})
+			return
+		}
+		writeJSON(w, http.StatusInternalServerError, map[string]string{"error": "failed to delete domain"})
+		return
+	}
+	w.WriteHeader(http.StatusNoContent)
+}
+
+func (a *API) DeleteAccount(w http.ResponseWriter, r *http.Request) {
+	u, err := a.authenticateUser(r)
+	if err != nil {
+		writeJSON(w, http.StatusUnauthorized, map[string]string{"error": "unauthorized"})
+		return
+	}
+
+	// Block deletion if user has an active subscription
+	if u.Tier == user.TierPremium {
+		writeJSON(w, http.StatusForbidden, map[string]string{"error": "cancel subscription first"})
+		return
+	}
+
+	// Delete all user's inboxes
+	addresses, err := a.userSvc.ListInboxes(r.Context(), u.UserID)
+	if err == nil {
+		for _, addr := range addresses {
+			_ = a.inboxSvc.DeleteInbox(r.Context(), addr)
+		}
+	}
+
+	// Delete all user's domains
+	if a.domainSvc != nil {
+		domains, err := a.domainSvc.ListUserDomains(r.Context(), u.UserID)
+		if err == nil {
+			for _, d := range domains {
+				_ = a.domainSvc.DeleteDomain(r.Context(), u.UserID, d.Domain)
+			}
+		}
+	}
+
+	// Delete the user record
+	if err := a.userSvc.DeleteAccount(r.Context(), u.UserID); err != nil {
+		writeJSON(w, http.StatusInternalServerError, map[string]string{"error": "failed to delete account"})
+		return
+	}
+
+	w.WriteHeader(http.StatusNoContent)
+}
+
 func (a *API) VerifyDomain(w http.ResponseWriter, r *http.Request) {
 	u, err := a.authenticateUser(r)
 	if err != nil {
diff --git a/services/internal/user/repository.go b/services/internal/user/repository.go
index a2e01d8..b818349 100644
--- a/services/internal/user/repository.go
+++ b/services/internal/user/repository.go
@@ -204,6 +204,18 @@ func (r *Repository) GetInboxExpiresAt(ctx context.Context, address string) (int
 	return 0, nil
 }
 
+// DeleteUser removes a user record.
+func (r *Repository) DeleteUser(ctx context.Context, userID string) error {
+	_, err := r.client.DeleteItem(ctx, &dynamodb.DeleteItemInput{
+		TableName: &r.tableName,
+		Key: map[string]types.AttributeValue{
+			"inbox_address": &types.AttributeValueMemberS{Value: UserPKPrefix + userID},
+			"message_id":    &types.AttributeValueMemberS{Value: UserSentinel},
+		},
+	})
+	return err
+}
+
 // --- Magic Token operations ---
 
 // CreateMagicToken stores a magic link token.
diff --git a/terraform/api_gateway.tf b/terraform/api_gateway.tf
index eee7bbf..ace3341 100644
--- a/terraform/api_gateway.tf
+++ b/terraform/api_gateway.tf
@@ -133,6 +133,18 @@ resource "aws_apigatewayv2_route" "get_domain_verify" {
   target    = "integrations/${aws_apigatewayv2_integration.api.id}"
 }
 
+resource "aws_apigatewayv2_route" "delete_domain" {
+  api_id    = aws_apigatewayv2_api.main.id
+  route_key = "DELETE /domains/{domain}"
+  target    = "integrations/${aws_apigatewayv2_integration.api.id}"
+}
+
+resource "aws_apigatewayv2_route" "delete_user_me" {
+  api_id    = aws_apigatewayv2_api.main.id
+  route_key = "DELETE /user/me"
+  target    = "integrations/${aws_apigatewayv2_integration.api.id}"
+}
+
 resource "aws_apigatewayv2_route" "post_auth_magic" {
   api_id    = aws_apigatewayv2_api.main.id
   route_key = "POST /auth/magic"

From 010e936e94e063698121327e10b2e1994df1d207 Mon Sep 17 00:00:00 2001
From: mqmalagris <63169613+mqmalagris@users.noreply.github.com>
Date: Sat, 25 Apr 2026 21:19:18 -0300
Subject: [PATCH 2/3] feat: add DeleteAccount function to remove user records

---
 services/internal/user/service.go | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/services/internal/user/service.go b/services/internal/user/service.go
index 1b547a3..46a0a29 100644
--- a/services/internal/user/service.go
+++ b/services/internal/user/service.go
@@ -295,6 +295,11 @@ func (s *Service) ListInboxes(ctx context.Context, userID string) ([]string, err
 	return active, nil
 }
 
+// DeleteAccount removes the user record. Inboxes and domains are deleted by callers.
+func (s *Service) DeleteAccount(ctx context.Context, userID string) error {
+	return s.repo.DeleteUser(ctx, userID)
+}
+
 // SetTier updates a user's tier (for admin/webhook use).
 func (s *Service) SetTier(ctx context.Context, userID, tier string) error {
 	noAds := tier == TierPremium

From 95d2cfd00e5681809f752c0f1708198ba34bf418 Mon Sep 17 00:00:00 2001
From: mqmalagris <63169613+mqmalagris@users.noreply.github.com>
Date: Sat, 25 Apr 2026 21:43:50 -0300
Subject: [PATCH 3/3] feat: add URL-based locale routing for multilingual SEO

Configure Astro i18n with /pt-br/, /es/, /fr/ prefixes and fallback rewrites
so each locale gets its own indexable URL with proper hreflang alternates.
---
 apps/web/astro.config.mjs                   |  59 ++++++++++-
 apps/web/src/app.d.ts                       |   6 ++
 apps/web/src/components/AccountView.svelte  |  10 +-
 apps/web/src/components/AdminView.svelte    |   8 +-
 apps/web/src/components/InboxView.svelte    |   6 +-
 apps/web/src/components/LandingPage.svelte  |  15 +--
 apps/web/src/components/LocaleToggle.svelte |   9 +-
 apps/web/src/components/LoginView.svelte    |   6 +-
 apps/web/src/layouts/Layout.astro           | 102 ++++++++++++++++----
 apps/web/src/lib/i18n.svelte.ts             |  73 +++++++++-----
 apps/web/src/middleware.ts                  |  16 +++
 apps/web/src/pages/auth/verify.astro        |  16 ++-
 apps/web/src/pages/docs.astro               |  10 +-
 apps/web/src/pages/inbox/[address].astro    |   5 +-
 apps/web/src/pages/inbox/index.astro        |   5 +-
 apps/web/src/pages/privacy.astro            |   5 +-
 apps/web/src/pages/terms.astro              |   8 +-
 17 files changed, 272 insertions(+), 87 deletions(-)
 create mode 100644 apps/web/src/middleware.ts

diff --git a/apps/web/astro.config.mjs b/apps/web/astro.config.mjs
index b84a4bf..af1fcd3 100644
--- a/apps/web/astro.config.mjs
+++ b/apps/web/astro.config.mjs
@@ -9,5 +9,62 @@ export default defineConfig({
   site: "https://ephemask.com",
   output: "server",
   adapter: vercel(),
-  integrations: [svelte(), react(), tailwind(), sitemap()],
+  i18n: {
+    defaultLocale: "en",
+    locales: [
+      "en",
+      { path: "pt-br", codes: ["pt-BR", "pt"] },
+      "es",
+      "fr",
+    ],
+    routing: {
+      prefixDefaultLocale: false,
+      fallbackType: "rewrite",
+    },
+    fallback: {
+      "pt-br": "en",
+      es: "en",
+      fr: "en",
+    },
+  },
+  integrations: [
+    svelte(),
+    react(),
+    tailwind(),
+    sitemap({
+      i18n: {
+        defaultLocale: "en",
+        locales: {
+          en: "en",
+          "pt-br": "pt-BR",
+          es: "es",
+          fr: "fr",
+        },
+      },
+      filter: (page) =>
+        !page.includes("/admin") &&
+        !page.includes("/auth/") &&
+        !page.includes("/inbox"),
+      customPages: [
+        "https://ephemask.com/pt-br/",
+        "https://ephemask.com/pt-br/account/",
+        "https://ephemask.com/pt-br/login/",
+        "https://ephemask.com/pt-br/docs/",
+        "https://ephemask.com/pt-br/privacy/",
+        "https://ephemask.com/pt-br/terms/",
+        "https://ephemask.com/es/",
+        "https://ephemask.com/es/account/",
+        "https://ephemask.com/es/login/",
+        "https://ephemask.com/es/docs/",
+        "https://ephemask.com/es/privacy/",
+        "https://ephemask.com/es/terms/",
+        "https://ephemask.com/fr/",
+        "https://ephemask.com/fr/account/",
+        "https://ephemask.com/fr/login/",
+        "https://ephemask.com/fr/docs/",
+        "https://ephemask.com/fr/privacy/",
+        "https://ephemask.com/fr/terms/",
+      ],
+    }),
+  ],
 });
diff --git a/apps/web/src/app.d.ts b/apps/web/src/app.d.ts
index d95cd9e..040c0ac 100644
--- a/apps/web/src/app.d.ts
+++ b/apps/web/src/app.d.ts
@@ -1,5 +1,11 @@
 /// <reference types="astro/client" />
 
+declare namespace App {
+  interface Locals {
+    locale: import("@ephemask/shared").Locale;
+  }
+}
+
 declare namespace svelteHTML {
   interface HTMLAttributes {
     onclick?: (event: MouseEvent) => void;
diff --git a/apps/web/src/components/AccountView.svelte b/apps/web/src/components/AccountView.svelte
index deee4b6..8762dfa 100644
--- a/apps/web/src/components/AccountView.svelte
+++ b/apps/web/src/components/AccountView.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
   import { onMount } from "svelte";
   import { t } from "@ephemask/shared";
-  import { initLocale, useLocale } from "../lib/i18n.svelte";
+  import { initLocale, useLocale, localizePath } from "../lib/i18n.svelte";
   import { createApiClient, type Locale } from "@ephemask/shared";
   import { useUser, initUser, registerUser, refreshUser, logout } from "../lib/user.svelte";
   import { initPurchases, purchasePremium, openManagementPortal } from "../lib/purchases";
@@ -121,13 +121,13 @@
 <div class="min-h-screen flex flex-col">
   <!-- Header -->
   <header class="px-6 py-5 flex items-center justify-between border-b border-ghost/15">
-    <a href="/" class="flex items-center gap-2 hover:opacity-80 transition-opacity">
+    <a href={localizePath("/")} class="flex items-center gap-2 hover:opacity-80 transition-opacity">
       <div class="w-2 h-2 rounded-full bg-neon pulse-ring"></div>
       <span class="font-display text-xs tracking-widest text-muted uppercase">ephemask</span>
     </a>
     <div class="flex items-center gap-4">
       <LocaleToggle />
-      <a href="/" class="text-xs text-muted font-mono hover:text-neon transition-colors">{t("ctaGenerate")}</a>
+      <a href={localizePath("/")} class="text-xs text-muted font-mono hover:text-neon transition-colors">{t("ctaGenerate")}</a>
     </div>
   </header>
 
@@ -316,7 +316,7 @@
                 {apiKeyCopied ? "✓" : t("copy")}
               </button>
             </div>
-            <a href="/docs" class="inline-block mt-3 text-[10px] font-mono text-ghost hover:text-neon transition-colors">
+            <a href={localizePath("/docs")} class="inline-block mt-3 text-[10px] font-mono text-ghost hover:text-neon transition-colors">
               API Documentation →
             </a>
           </div>
@@ -359,7 +359,7 @@
               if (!user.apiKey) return;
               await api.deleteAccount(user.apiKey);
               logout();
-              window.location.href = "/";
+              window.location.href = localizePath("/");
             }}
             disabled={user.isPremium}
             class="px-4 py-2 text-xs font-mono tracking-wider border border-ember/40 text-ember
diff --git a/apps/web/src/components/AdminView.svelte b/apps/web/src/components/AdminView.svelte
index 46efa98..c8d17fc 100644
--- a/apps/web/src/components/AdminView.svelte
+++ b/apps/web/src/components/AdminView.svelte
@@ -6,7 +6,7 @@
     type MessageDetail as MessageDetailType,
     getLocale,
   } from "@ephemask/shared";
-  import { initLocale } from "../lib/i18n.svelte";
+  import { initLocale, localizePath } from "../lib/i18n.svelte";
   import { useUser, initUser } from "../lib/user.svelte";
 
   const api = createApiClient(import.meta.env.PUBLIC_API_URL || "");
@@ -139,7 +139,7 @@
     await initUser();
 
     if (!user.isAdmin) {
-      window.location.href = "/";
+      window.location.href = localizePath("/");
       return;
     }
 
@@ -156,13 +156,13 @@
   <!-- Header -->
   <header class="px-6 py-4 flex items-center justify-between border-b border-ghost/15">
     <div class="flex items-center gap-3">
-      <a href="/" class="flex items-center gap-2 hover:opacity-80 transition-opacity">
+      <a href={localizePath("/")} class="flex items-center gap-2 hover:opacity-80 transition-opacity">
         <div class="w-2 h-2 rounded-full bg-neon pulse-ring"></div>
         <span class="font-display text-xs tracking-widest text-muted uppercase">ephemask</span>
       </a>
       <span class="text-ember text-[10px] font-mono tracking-widest">ADMIN</span>
     </div>
-    <a href="/account" class="text-xs text-muted font-mono hover:text-neon transition-colors">Account</a>
+    <a href={localizePath("/account")} class="text-xs text-muted font-mono hover:text-neon transition-colors">Account</a>
   </header>
 
   {#if loading}
diff --git a/apps/web/src/components/InboxView.svelte b/apps/web/src/components/InboxView.svelte
index 946f1ad..9008d43 100644
--- a/apps/web/src/components/InboxView.svelte
+++ b/apps/web/src/components/InboxView.svelte
@@ -9,7 +9,7 @@
     type MessageSummary,
     type MessageDetail as MessageDetailType,
   } from "@ephemask/shared";
-  import { initLocale, useLocale } from "../lib/i18n.svelte";
+  import { initLocale, useLocale, localizePath } from "../lib/i18n.svelte";
   import { useUser, initUser, ensureUser } from "../lib/user.svelte";
 
   const loc = useLocale();
@@ -280,7 +280,7 @@
               {/if}
             </div>
             <div class="flex items-center gap-3">
-              <a href="/account" class="text-[10px] font-mono text-ghost hover:text-neon transition-colors">{t("account")}</a>
+              <a href={localizePath("/account")} class="text-[10px] font-mono text-ghost hover:text-neon transition-colors">{t("account")}</a>
               <ThemeToggle />
               <LocaleToggle />
             </div>
@@ -309,7 +309,7 @@
             <span>{t("inboxExpired")} &mdash; {t("dataDestroyed")}</span>
           </div>
           <a
-            href="/"
+            href={localizePath("/")}
             class="mt-3 inline-flex items-center gap-2 px-4 py-2 text-xs font-mono border border-neon/30 text-neon hover:bg-neon/10 transition-all duration-300"
           >
             <svg class="w-3.5 h-3.5" fill="none" stroke="currentColor" viewBox="0 0 24 24">
diff --git a/apps/web/src/components/LandingPage.svelte b/apps/web/src/components/LandingPage.svelte
index 16e5c48..39c3ab2 100644
--- a/apps/web/src/components/LandingPage.svelte
+++ b/apps/web/src/components/LandingPage.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
   import { onMount } from "svelte";
   import { t, type TranslationKey } from "@ephemask/shared";
-  import { initLocale, useLocale } from "../lib/i18n.svelte";
+  import { initLocale, useLocale, localizePath } from "../lib/i18n.svelte";
   import { useUser, initUser, ensureUser } from "../lib/user.svelte";
   import LocaleToggle from "./LocaleToggle.svelte";
   import ThemeToggle from "./ThemeToggle.svelte";
@@ -20,6 +20,7 @@
     await ensureUser();
 
     window.location.href = "/inbox";
+    // Note: /inbox/[address] is noindex and stays unprefixed by design.
   }
 
   const steps = [
@@ -50,9 +51,9 @@
       <a href="#how" class="hover:text-neon transition-colors duration-300">{t("navHowItWorks")}</a>
       <a href="#pricing" class="hover:text-neon transition-colors duration-300">{t("navPricing")}</a>
       {#if user.isLoggedIn}
-        <a href="/account" class="hover:text-neon transition-colors duration-300">{t("account")}</a>
+        <a href={localizePath("/account")} class="hover:text-neon transition-colors duration-300">{t("account")}</a>
       {:else}
-        <a href="/login" class="hover:text-neon transition-colors duration-300">{t("login")}</a>
+        <a href={localizePath("/login")} class="hover:text-neon transition-colors duration-300">{t("login")}</a>
       {/if}
       <ThemeToggle />
       <LocaleToggle />
@@ -80,9 +81,9 @@
       <a href="#how" onclick={() => menuOpen = false} class="hover:text-neon transition-colors duration-300">{t("navHowItWorks")}</a>
       <a href="#pricing" onclick={() => menuOpen = false} class="hover:text-neon transition-colors duration-300">{t("navPricing")}</a>
       {#if user.isLoggedIn}
-        <a href="/account" class="hover:text-neon transition-colors duration-300">{t("account")}</a>
+        <a href={localizePath("/account")} class="hover:text-neon transition-colors duration-300">{t("account")}</a>
       {:else}
-        <a href="/login" class="hover:text-neon transition-colors duration-300">{t("login")}</a>
+        <a href={localizePath("/login")} class="hover:text-neon transition-colors duration-300">{t("login")}</a>
       {/if}
     </nav>
   {/if}
@@ -221,9 +222,9 @@
       <span class="text-neon/40">&lt;/&gt;</span>
     </div>
     <div class="flex justify-center gap-4 text-[10px] font-mono">
-      <a href="/privacy" class="text-ghost hover:text-neon transition-colors">Privacy Policy</a>
+      <a href={localizePath("/privacy")} class="text-ghost hover:text-neon transition-colors">Privacy Policy</a>
       <span class="text-ghost/30">|</span>
-      <a href="/terms" class="text-ghost hover:text-neon transition-colors">Terms of Service</a>
+      <a href={localizePath("/terms")} class="text-ghost hover:text-neon transition-colors">Terms of Service</a>
     </div>
   </footer>
 </div>
diff --git a/apps/web/src/components/LocaleToggle.svelte b/apps/web/src/components/LocaleToggle.svelte
index 5fe131e..8d39fd6 100644
--- a/apps/web/src/components/LocaleToggle.svelte
+++ b/apps/web/src/components/LocaleToggle.svelte
@@ -1,6 +1,6 @@
 <script lang="ts">
   import { locales, type Locale } from "@ephemask/shared";
-  import { useLocale } from "../lib/i18n.svelte";
+  import { useLocale, stripLocaleFromPath, pathPrefixForLocale } from "../lib/i18n.svelte";
 
   const loc = useLocale();
 
@@ -12,7 +12,12 @@
   };
 
   function setLang(l: Locale) {
-    loc.locale = l;
+    if (l === loc.locale) return;
+    if (typeof window === "undefined") return;
+    const stripped = stripLocaleFromPath(window.location.pathname);
+    const prefix = pathPrefixForLocale(l);
+    const target = stripped === "/" ? prefix + "/" : prefix + stripped;
+    window.location.href = (target || "/") + window.location.search + window.location.hash;
   }
 </script>
 
diff --git a/apps/web/src/components/LoginView.svelte b/apps/web/src/components/LoginView.svelte
index 88985cb..deb2c8e 100644
--- a/apps/web/src/components/LoginView.svelte
+++ b/apps/web/src/components/LoginView.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
   import { onMount } from "svelte";
   import { t } from "@ephemask/shared";
-  import { initLocale, useLocale } from "../lib/i18n.svelte";
+  import { initLocale, useLocale, localizePath } from "../lib/i18n.svelte";
   import LocaleToggle from "./LocaleToggle.svelte";
 
   const loc = useLocale();
@@ -44,7 +44,7 @@
 {#key loc.locale}
 <div class="min-h-screen flex flex-col">
   <header class="px-6 py-5 flex items-center justify-between border-b border-ghost/15">
-    <a href="/" class="flex items-center gap-2 hover:opacity-80 transition-opacity">
+    <a href={localizePath("/")} class="flex items-center gap-2 hover:opacity-80 transition-opacity">
       <div class="w-2 h-2 rounded-full bg-neon pulse-ring"></div>
       <span class="font-display text-xs tracking-widest text-muted uppercase">ephemask</span>
     </a>
@@ -91,7 +91,7 @@
           </form>
 
           <div class="mt-4 text-center">
-            <a href="/account" class="text-[11px] font-mono text-ghost hover:text-neon transition-colors">
+            <a href={localizePath("/account")} class="text-[11px] font-mono text-ghost hover:text-neon transition-colors">
               {t("register")}
             </a>
           </div>
diff --git a/apps/web/src/layouts/Layout.astro b/apps/web/src/layouts/Layout.astro
index 82763c8..c6e77eb 100644
--- a/apps/web/src/layouts/Layout.astro
+++ b/apps/web/src/layouts/Layout.astro
@@ -1,22 +1,79 @@
 ---
+import { setLocale, t, type Locale } from "@ephemask/shared";
+
 interface Props {
   title?: string;
   description?: string;
   noindex?: boolean;
 }
 
+// Astro.currentLocale tracks the language code matched by the URL even when the route is rewritten via fallback.
+const CURRENT_TO_LOCALE: Record<string, Locale> = {
+  en: "en",
+  "pt-br": "pt-BR",
+  "pt-BR": "pt-BR",
+  pt: "pt-BR",
+  es: "es",
+  fr: "fr",
+};
+const cl = Astro.currentLocale;
+const locale: Locale = (cl && CURRENT_TO_LOCALE[cl]) || "en";
+setLocale(locale);
+
 const {
-  title = "Ephemask - Free & Secure Temporary Email",
-  description = "Receive disposable emails without signup. Total privacy, temporary inbox that self-destructs. Free.",
+  title = t("siteTitle"),
+  description = t("siteDescription"),
   noindex = false,
 } = Astro.props;
 
-const canonicalURL = new URL(Astro.url.pathname, Astro.site || "https://ephemask.com");
-const ogImage = new URL("/og-image.png", Astro.site || "https://ephemask.com");
+const SITE = Astro.site || new URL("https://ephemask.com");
+
+const LOCALE_TO_PATH: Record<Locale, string> = {
+  en: "",
+  "pt-BR": "/pt-br",
+  es: "/es",
+  fr: "/fr",
+};
+
+const HTML_LANG: Record<Locale, string> = {
+  en: "en",
+  "pt-BR": "pt-BR",
+  es: "es",
+  fr: "fr",
+};
+
+const OG_LOCALE: Record<Locale, string> = {
+  en: "en_US",
+  "pt-BR": "pt_BR",
+  es: "es_ES",
+  fr: "fr_FR",
+};
+
+const HREFLANG: Record<Locale, string> = {
+  en: "en",
+  "pt-BR": "pt-BR",
+  es: "es",
+  fr: "fr",
+};
+
+// Strip any locale prefix from current pathname to get the canonical "shared" path
+const rawPath = Astro.url.pathname;
+const stripped = rawPath.replace(/^\/(pt-br|es|fr)(?=\/|$)/i, "") || "/";
+const sharedPath = stripped.endsWith("/") && stripped.length > 1 ? stripped.slice(0, -1) : stripped;
+
+function buildLocaleUrl(loc: Locale): string {
+  const prefix = LOCALE_TO_PATH[loc];
+  const path = sharedPath === "/" ? "" : sharedPath;
+  return new URL(`${prefix}${path}` || "/", SITE).toString();
+}
+
+const canonicalURL = buildLocaleUrl(locale);
+const ogImage = new URL("/og-image.png", SITE);
+const allLocales: Locale[] = ["en", "pt-BR", "es", "fr"];
 ---
 
 <!doctype html>
-<html lang="en">
+<html lang={HTML_LANG[locale]}>
   <head>
     <meta charset="UTF-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
@@ -35,10 +92,10 @@ const ogImage = new URL("/og-image.png", Astro.site || "https://ephemask.com");
     <meta property="og:image:width" content="1200" />
     <meta property="og:image:height" content="630" />
     <meta property="og:site_name" content="Ephemask" />
-    <meta property="og:locale" content="en_US" />
-    <meta property="og:locale:alternate" content="pt_BR" />
-    <meta property="og:locale:alternate" content="es_ES" />
-    <meta property="og:locale:alternate" content="fr_FR" />
+    <meta property="og:locale" content={OG_LOCALE[locale]} />
+    {allLocales.filter((l) => l !== locale).map((l) => (
+      <meta property="og:locale:alternate" content={OG_LOCALE[l]} />
+    ))}
 
     <!-- Twitter -->
     <meta name="twitter:card" content="summary_large_image" />
@@ -47,6 +104,12 @@ const ogImage = new URL("/og-image.png", Astro.site || "https://ephemask.com");
     <meta name="twitter:image" content={ogImage} />
 
     <link rel="canonical" href={canonicalURL} />
+
+    {!noindex && allLocales.map((l) => (
+      <link rel="alternate" hreflang={HREFLANG[l]} href={buildLocaleUrl(l)} />
+    ))}
+    {!noindex && <link rel="alternate" hreflang="x-default" href={buildLocaleUrl("en")} />}
+
     <link rel="icon" href="/favicon.ico" sizes="32x32" />
     <link rel="icon" type="image/svg+xml" href="/favicon.svg" />
     <link rel="icon" type="image/png" sizes="32x32" href="/favicon-32.png" />
@@ -66,7 +129,8 @@ const ogImage = new URL("/og-image.png", Astro.site || "https://ephemask.com");
       "@context": "https://schema.org",
       "@type": "WebApplication",
       "name": "Ephemask",
-      "url": "https://ephemask.com",
+      "url": canonicalURL,
+      "inLanguage": HTML_LANG[locale],
       "description": "Free disposable temporary email service. Create anonymous inboxes that self-destruct after 10 minutes.",
       "applicationCategory": "SecurityApplication",
       "operatingSystem": "Web",
@@ -88,6 +152,12 @@ const ogImage = new URL("/og-image.png", Astro.site || "https://ephemask.com");
       ]
     })} />
 
+    <!-- Locale prefix for client-side use -->
+    <script is:inline define:vars={{ localePrefix: LOCALE_TO_PATH[locale], localeCode: locale }}>
+      window.__EPHEMASK_LOCALE__ = localeCode;
+      window.__EPHEMASK_LOCALE_PREFIX__ = localePrefix;
+    </script>
+
     <!-- Google Analytics -->
     <script async src="https://www.googletagmanager.com/gtag/js?id=G-2XQHVZTMHY"></script>
     <script is:inline>
@@ -100,19 +170,9 @@ const ogImage = new URL("/og-image.png", Astro.site || "https://ephemask.com");
     <!-- Google AdSense -->
     <script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-3291596525359943" crossorigin="anonymous"></script>
 
-    <!-- Detect locale and theme before render to avoid flash -->
+    <!-- Detect theme before render to avoid flash -->
     <script is:inline>
       (function() {
-        var valid = ["en", "es", "fr", "pt-BR"];
-        var saved = localStorage.getItem("ephemask-locale");
-        if (saved && valid.indexOf(saved) !== -1) {
-          document.documentElement.lang = saved;
-        } else {
-          var lang = navigator.language.substring(0, 2);
-          var map = { pt: "pt-BR", es: "es", fr: "fr" };
-          document.documentElement.lang = map[lang] || "en";
-        }
-        // Theme
         var theme = localStorage.getItem("ephemask-theme");
         if (theme === "clean") {
           document.documentElement.classList.add("theme-clean");
diff --git a/apps/web/src/lib/i18n.svelte.ts b/apps/web/src/lib/i18n.svelte.ts
index dece436..a4963eb 100644
--- a/apps/web/src/lib/i18n.svelte.ts
+++ b/apps/web/src/lib/i18n.svelte.ts
@@ -1,12 +1,59 @@
 import {
   setLocale as setSharedLocale,
   getLocale,
-  locales,
   type Locale,
 } from "@ephemask/shared";
 
 let locale = $state<Locale>(getLocale());
 
+const PATH_TO_LOCALE: Record<string, Locale> = {
+  "pt-br": "pt-BR",
+  es: "es",
+  fr: "fr",
+};
+
+const LOCALE_TO_PATH: Record<Locale, string> = {
+  en: "",
+  "pt-BR": "/pt-br",
+  es: "/es",
+  fr: "/fr",
+};
+
+function localeFromPath(pathname: string): Locale {
+  const seg = pathname.split("/").filter(Boolean)[0]?.toLowerCase();
+  return (seg && PATH_TO_LOCALE[seg]) || "en";
+}
+
+function getRuntimeLocale(): Locale {
+  if (typeof window === "undefined") return "en";
+  const fromGlobal = (window as any).__EPHEMASK_LOCALE__ as Locale | undefined;
+  if (fromGlobal) return fromGlobal;
+  return localeFromPath(window.location.pathname);
+}
+
+export function localePrefix(): string {
+  if (typeof window === "undefined") return "";
+  const p = (window as any).__EPHEMASK_LOCALE_PREFIX__;
+  if (typeof p === "string") return p;
+  return LOCALE_TO_PATH[localeFromPath(window.location.pathname)];
+}
+
+export function localizePath(path: string): string {
+  if (!path.startsWith("/")) return path;
+  const prefix = localePrefix();
+  if (!prefix) return path;
+  if (path === "/") return prefix + "/";
+  return prefix + path;
+}
+
+export function stripLocaleFromPath(pathname: string): string {
+  return pathname.replace(/^\/(pt-br|es|fr)(?=\/|$)/i, "") || "/";
+}
+
+export function pathPrefixForLocale(loc: Locale): string {
+  return LOCALE_TO_PATH[loc];
+}
+
 export function useLocale() {
   return {
     get locale() {
@@ -15,35 +62,15 @@ export function useLocale() {
     set locale(l: Locale) {
       locale = l;
       setSharedLocale(l);
-      if (typeof localStorage !== "undefined") {
-        localStorage.setItem("ephemask-locale", l);
-      }
       if (typeof document !== "undefined") {
-        document.documentElement.lang = l;
+        document.documentElement.lang = l === "pt-BR" ? "pt-BR" : l;
       }
     },
   };
 }
 
-function detectLocale(): Locale {
-  if (typeof navigator === "undefined") return "en";
-  const lang = navigator.language.toLowerCase();
-  if (lang.startsWith("pt")) return "pt-BR";
-  if (lang.startsWith("es")) return "es";
-  if (lang.startsWith("fr")) return "fr";
-  return "en";
-}
-
 export function initLocale(): Locale {
-  if (typeof localStorage !== "undefined") {
-    const saved = localStorage.getItem("ephemask-locale") as Locale | null;
-    if (saved && locales.includes(saved)) {
-      locale = saved;
-      setSharedLocale(saved);
-      return saved;
-    }
-  }
-  const detected = detectLocale();
+  const detected = getRuntimeLocale();
   locale = detected;
   setSharedLocale(detected);
   return detected;
diff --git a/apps/web/src/middleware.ts b/apps/web/src/middleware.ts
new file mode 100644
index 0000000..b7c8f41
--- /dev/null
+++ b/apps/web/src/middleware.ts
@@ -0,0 +1,16 @@
+import { defineMiddleware } from "astro:middleware";
+import { setLocale, type Locale } from "@ephemask/shared";
+
+const PATH_TO_LOCALE: Record<string, Locale> = {
+  "pt-br": "pt-BR",
+  es: "es",
+  fr: "fr",
+};
+
+export const onRequest = defineMiddleware((context, next) => {
+  const seg = context.url.pathname.split("/").filter(Boolean)[0]?.toLowerCase();
+  const locale: Locale = (seg && PATH_TO_LOCALE[seg]) || "en";
+  setLocale(locale);
+  context.locals.locale = locale;
+  return next();
+});
diff --git a/apps/web/src/pages/auth/verify.astro b/apps/web/src/pages/auth/verify.astro
index b02a7b7..6e112cd 100644
--- a/apps/web/src/pages/auth/verify.astro
+++ b/apps/web/src/pages/auth/verify.astro
@@ -24,14 +24,10 @@ import Layout from "../../layouts/Layout.astro";
 <script>
   import { t, setLocale, type Locale } from "@ephemask/shared";
 
-  // Detect locale
-  const saved = localStorage.getItem("ephemask-locale") as Locale | null;
-  if (saved) setLocale(saved);
-  else if (!navigator.language.startsWith("pt")) {
-    const lang = navigator.language.substring(0, 2);
-    const map: Record<string, Locale> = { pt: "pt-BR", es: "es", fr: "fr" };
-    setLocale(map[lang] || "en");
-  }
+  // Locale comes from URL prefix (set by middleware via window globals)
+  const localeCode = (window as any).__EPHEMASK_LOCALE__ as Locale | undefined;
+  const localePrefix = ((window as any).__EPHEMASK_LOCALE_PREFIX__ as string | undefined) || "";
+  if (localeCode) setLocale(localeCode);
 
   const params = new URLSearchParams(window.location.search);
   const token = params.get("token");
@@ -61,7 +57,7 @@ import Layout from "../../layouts/Layout.astro";
         }
 
         setTimeout(() => {
-          window.location.href = "/account";
+          window.location.href = `${localePrefix}/account`;
         }, 1500);
       })
       .catch(() => {
@@ -71,7 +67,7 @@ import Layout from "../../layouts/Layout.astro";
               <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 18L18 6M6 6l12 12" />
             </svg>
             <p class="text-ember text-sm font-mono mb-2">${t("linkExpired")}</p>
-            <a href="/login" class="text-neon text-xs font-mono hover:underline">${t("tryAgain")}</a>
+            <a href="${localePrefix}/login" class="text-neon text-xs font-mono hover:underline">${t("tryAgain")}</a>
           `;
         }
       });
diff --git a/apps/web/src/pages/docs.astro b/apps/web/src/pages/docs.astro
index afad11c..d7b9908 100644
--- a/apps/web/src/pages/docs.astro
+++ b/apps/web/src/pages/docs.astro
@@ -1,15 +1,19 @@
 ---
 import Layout from "../layouts/Layout.astro";
+import { getRelativeLocaleUrl } from "astro:i18n";
+const locale = Astro.currentLocale || "en";
+const homeUrl = getRelativeLocaleUrl(locale, "/");
+const accountUrl = getRelativeLocaleUrl(locale, "/account");
 ---
 
 <Layout title="API Documentation - Ephemask">
   <div class="min-h-screen flex flex-col">
     <header class="px-6 py-5 flex items-center justify-between border-b border-ghost/15">
-      <a href="/" class="flex items-center gap-2 hover:opacity-80 transition-opacity">
+      <a href={homeUrl} class="flex items-center gap-2 hover:opacity-80 transition-opacity">
         <div class="w-2 h-2 rounded-full bg-neon pulse-ring"></div>
         <span class="font-display text-xs tracking-widest text-muted uppercase">ephemask</span>
       </a>
-      <a href="/account" class="text-xs text-muted font-mono hover:text-neon transition-colors">Account</a>
+      <a href={accountUrl} class="text-xs text-muted font-mono hover:text-neon transition-colors">Account</a>
     </header>
 
     <main class="flex-1 px-6 py-12 max-w-3xl mx-auto w-full">
@@ -25,7 +29,7 @@ import Layout from "../layouts/Layout.astro";
           <div class="bg-abyss/80 glow-border rounded-sm p-4">
             <code class="text-neon">Authorization: Bearer YOUR_API_KEY</code>
           </div>
-          <p class="text-ghost mt-2">Get your API key from the <a href="/account" class="text-neon hover:underline">Account page</a>.</p>
+          <p class="text-ghost mt-2">Get your API key from the <a href={accountUrl} class="text-neon hover:underline">Account page</a>.</p>
         </section>
 
         <!-- Base URL -->
diff --git a/apps/web/src/pages/inbox/[address].astro b/apps/web/src/pages/inbox/[address].astro
index b27fa4d..e1e0135 100644
--- a/apps/web/src/pages/inbox/[address].astro
+++ b/apps/web/src/pages/inbox/[address].astro
@@ -4,15 +4,18 @@ export const prerender = false;
 import Layout from "../../layouts/Layout.astro";
 import InboxView from "../../components/InboxView.svelte";
 import StatusIndicator from "../../components/StatusIndicator.svelte";
+import { getRelativeLocaleUrl } from "astro:i18n";
 
 const { address } = Astro.params;
+const locale = Astro.currentLocale || "en";
+const homeUrl = getRelativeLocaleUrl(locale, "/");
 ---
 
 <Layout title={`${address} - Ephemask Inbox`} noindex={true}>
   <div class="min-h-screen flex flex-col">
     <!-- HEADER -->
     <header class="px-6 py-5 flex items-center justify-between border-b border-ghost/15">
-      <a href="/" class="flex items-center gap-2 hover:opacity-80 transition-opacity">
+      <a href={homeUrl} class="flex items-center gap-2 hover:opacity-80 transition-opacity">
         <div class="w-2 h-2 rounded-full bg-neon pulse-ring"></div>
         <span class="font-display text-xs tracking-widest text-muted uppercase">ephemask</span>
       </a>
diff --git a/apps/web/src/pages/inbox/index.astro b/apps/web/src/pages/inbox/index.astro
index 1b8d141..8a79ebd 100644
--- a/apps/web/src/pages/inbox/index.astro
+++ b/apps/web/src/pages/inbox/index.astro
@@ -2,12 +2,15 @@
 import Layout from "../../layouts/Layout.astro";
 import InboxView from "../../components/InboxView.svelte";
 import StatusIndicator from "../../components/StatusIndicator.svelte";
+import { getRelativeLocaleUrl } from "astro:i18n";
+const locale = Astro.currentLocale || "en";
+const homeUrl = getRelativeLocaleUrl(locale, "/");
 ---
 
 <Layout title="Ephemask Inbox" noindex={true}>
   <div class="min-h-screen flex flex-col">
     <header class="px-6 py-5 flex items-center justify-between border-b border-ghost/15">
-      <a href="/" class="flex items-center gap-2 hover:opacity-80 transition-opacity">
+      <a href={homeUrl} class="flex items-center gap-2 hover:opacity-80 transition-opacity">
         <div class="w-2 h-2 rounded-full bg-neon pulse-ring"></div>
         <span class="font-display text-xs tracking-widest text-muted uppercase">ephemask</span>
       </a>
diff --git a/apps/web/src/pages/privacy.astro b/apps/web/src/pages/privacy.astro
index f664111..bd9a77f 100644
--- a/apps/web/src/pages/privacy.astro
+++ b/apps/web/src/pages/privacy.astro
@@ -1,11 +1,14 @@
 ---
 import Layout from "../layouts/Layout.astro";
+import { getRelativeLocaleUrl } from "astro:i18n";
+const locale = Astro.currentLocale || "en";
+const homeUrl = getRelativeLocaleUrl(locale, "/");
 ---
 
 <Layout title="Privacy Policy - Ephemask">
   <div class="min-h-screen flex flex-col">
     <header class="px-6 py-5 flex items-center justify-between border-b border-ghost/15">
-      <a href="/" class="flex items-center gap-2 hover:opacity-80 transition-opacity">
+      <a href={homeUrl} class="flex items-center gap-2 hover:opacity-80 transition-opacity">
         <div class="w-2 h-2 rounded-full bg-neon pulse-ring"></div>
         <span class="font-display text-xs tracking-widest text-muted uppercase">ephemask</span>
       </a>
diff --git a/apps/web/src/pages/terms.astro b/apps/web/src/pages/terms.astro
index 75809f6..3edb5ed 100644
--- a/apps/web/src/pages/terms.astro
+++ b/apps/web/src/pages/terms.astro
@@ -1,11 +1,15 @@
 ---
 import Layout from "../layouts/Layout.astro";
+import { getRelativeLocaleUrl } from "astro:i18n";
+const locale = Astro.currentLocale || "en";
+const homeUrl = getRelativeLocaleUrl(locale, "/");
+const privacyUrl = getRelativeLocaleUrl(locale, "/privacy");
 ---
 
 <Layout title="Terms of Service - Ephemask">
   <div class="min-h-screen flex flex-col">
     <header class="px-6 py-5 flex items-center justify-between border-b border-ghost/15">
-      <a href="/" class="flex items-center gap-2 hover:opacity-80 transition-opacity">
+      <a href={homeUrl} class="flex items-center gap-2 hover:opacity-80 transition-opacity">
         <div class="w-2 h-2 rounded-full bg-neon pulse-ring"></div>
         <span class="font-display text-xs tracking-widest text-muted uppercase">ephemask</span>
       </a>
@@ -55,7 +59,7 @@ import Layout from "../layouts/Layout.astro";
 
         <section>
           <h2 class="text-white text-sm font-display tracking-wider mb-3">6. Data and Privacy</h2>
-          <p>Your use of the Service is subject to our <a href="/privacy" class="text-neon hover:underline">Privacy Policy</a>. By using the Service, you consent to the collection and use of data as described therein.</p>
+          <p>Your use of the Service is subject to our <a href={privacyUrl} class="text-neon hover:underline">Privacy Policy</a>. By using the Service, you consent to the collection and use of data as described therein.</p>
           <p>Ephemask is a temporary email service. <strong class="text-white/80">Do not use it to receive sensitive or critical emails.</strong> We are not responsible for lost, delayed, or undelivered emails.</p>
         </section>