diff --git a/sourcecode/hub/app/Http/Controllers/UserController.php b/sourcecode/hub/app/Http/Controllers/UserController.php
index 7c44189919..75a67a0529 100644
--- a/sourcecode/hub/app/Http/Controllers/UserController.php
+++ b/sourcecode/hub/app/Http/Controllers/UserController.php
@@ -12,7 +12,9 @@
 use App\Http\Requests\StoreUserRequest;
 use App\Http\Requests\UpdateUserRequest;
 use App\Mail\ResetPasswordEmail;
+use App\Mail\VerifyEmailAddress;
 use App\Models\User;
+use Illuminate\Contracts\Mail\Mailer;
 use Illuminate\Contracts\View\View;
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Http\Request;
@@ -22,6 +24,8 @@
 
 use function app;
 use function assert;
+use function redirect;
+use function route;
 use function to_route;
 use function view;
 
@@ -41,6 +45,7 @@ public function store(StoreUserRequest $request): RedirectResponse
         $user = new User();
         $user->name = $request->validated('name');
         $user->email = $request->validated('email');
+        $user->email_verified = false;
         $user->password = Hash::make($request->validated('password'));
         $user->save();
 
@@ -159,4 +164,35 @@ public function disconnectSocialAccounts(Request $request): RedirectResponse
             ->route('user.my-account')
             ->with('alert', trans('messages.alert-account-update'));
     }
+
+    public function sendVerificationEmail(Mailer $mailer): RedirectResponse
+    {
+        $user = $this->getUser();
+
+        if ($user->email_verified) {
+            return redirect()->back();
+        }
+
+        $mailer->send(new VerifyEmailAddress($user));
+
+        return redirect()->back()->with('alert', trans('messages.verification-email-sent'));
+    }
+
+    public function verifyEmail(Request $request): RedirectResponse
+    {
+        $user = $this->getUser();
+
+        if (!$user->checkVerificationDetails(
+            $request->query->getString('hash'),
+            $request->query->getInt('time'),
+        )) {
+            abort(404);
+        }
+
+        $user->email_verified = true;
+        $user->save();
+
+        return redirect()->route('user.my-account')
+            ->with('alert', trans('messages.your-account-has-been-verified'));
+    }
 }
diff --git a/sourcecode/hub/app/Listeners/AddAuthToLtiLaunch.php b/sourcecode/hub/app/Listeners/AddAuthToLtiLaunch.php
index c9d9573eb6..f30fe11775 100644
--- a/sourcecode/hub/app/Listeners/AddAuthToLtiLaunch.php
+++ b/sourcecode/hub/app/Listeners/AddAuthToLtiLaunch.php
@@ -49,7 +49,7 @@ private function addUserDetails(LaunchLti $event, User $user): void
                 ->withClaim('lis_person_name_family', $familyName);
         }
 
-        if ($tool->send_email) {
+        if ($tool->send_email && $user->email_verified) {
             $launch = $launch
                 ->withClaim('lis_person_contact_email_primary', $user->email);
         }
diff --git a/sourcecode/hub/app/Listeners/SendAccountEmails.php b/sourcecode/hub/app/Listeners/SendAccountEmails.php
new file mode 100644
index 0000000000..3ec2b804f7
--- /dev/null
+++ b/sourcecode/hub/app/Listeners/SendAccountEmails.php
@@ -0,0 +1,52 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Listeners;
+
+use App\Events\UserSaved;
+use App\Mail\EmailChanged;
+use App\Mail\VerifyEmailAddress;
+use Illuminate\Contracts\Mail\Mailer;
+
+final readonly class SendAccountEmails
+{
+    public function __construct(private Mailer $mailer) {}
+
+    public function handleUserSaved(UserSaved $event): void
+    {
+        if ($event->user->email_verified) {
+            // nothing to do
+            return;
+        }
+
+        if ($event->user->wasRecentlyCreated) {
+            $this->sendEmailToNewAccount($event);
+        } elseif ($event->user->wasChanged('email')) {
+            $this->sendEmailsOnEmailChange($event);
+        }
+    }
+
+    private function sendEmailToNewAccount(UserSaved $event): void
+    {
+        // TODO: should be a welcome email
+        $this->mailer->send(new VerifyEmailAddress($event->user));
+    }
+
+    private function sendEmailsOnEmailChange(UserSaved $event): void
+    {
+        // do not send the notification if the previous email was unverified
+        if ($event->user->getOriginal('email_verified')) {
+            $this->mailer->send(
+                new EmailChanged(
+                    oldEmail: $event->user->getOriginal('email'),
+                    name: $event->user->getOriginal('name'),
+                ),
+            );
+        }
+
+        // send a verification request to the new address
+        // TODO: should acknowledge the email change
+        $this->mailer->send(new VerifyEmailAddress($event->user));
+    }
+}
diff --git a/sourcecode/hub/app/Mail/EmailChanged.php b/sourcecode/hub/app/Mail/EmailChanged.php
new file mode 100644
index 0000000000..c0902b1a33
--- /dev/null
+++ b/sourcecode/hub/app/Mail/EmailChanged.php
@@ -0,0 +1,34 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Mail;
+
+use Illuminate\Bus\Queueable;
+use Illuminate\Mail\Mailable;
+use Illuminate\Mail\Mailables\Address;
+use Illuminate\Mail\Mailables\Content;
+use Illuminate\Mail\Mailables\Envelope;
+
+final class EmailChanged extends Mailable
+{
+    use Queueable;
+
+    public function __construct(
+        private readonly string $name,
+        private readonly string $oldEmail,
+    ) {}
+
+    public function envelope(): Envelope
+    {
+        return new Envelope(
+            subject: trans('email-changed.subject'),
+            to: [new Address($this->oldEmail, $this->name)],
+        );
+    }
+
+    public function content(): Content
+    {
+        return new Content(html: 'emails.email-changed');
+    }
+}
diff --git a/sourcecode/hub/app/Mail/ResetPasswordEmail.php b/sourcecode/hub/app/Mail/ResetPasswordEmail.php
index cac5fb236b..a8ff277571 100644
--- a/sourcecode/hub/app/Mail/ResetPasswordEmail.php
+++ b/sourcecode/hub/app/Mail/ResetPasswordEmail.php
@@ -8,6 +8,8 @@
 use Illuminate\Mail\Mailable;
 use Illuminate\Queue\SerializesModels;
 
+use function trans;
+
 class ResetPasswordEmail extends Mailable
 {
     use Queueable;
@@ -17,7 +19,8 @@ public function __construct(public string $resetLink) {}
 
     public function build(): Mailable
     {
-        return $this->view('emails.reset-password')
-            ->subject(trans('messages.reset-password'));
+        return $this
+            ->subject(trans('messages.reset-password'))
+            ->view('emails.reset-password');
     }
 }
diff --git a/sourcecode/hub/app/Mail/VerifyEmailAddress.php b/sourcecode/hub/app/Mail/VerifyEmailAddress.php
new file mode 100644
index 0000000000..99c532b69f
--- /dev/null
+++ b/sourcecode/hub/app/Mail/VerifyEmailAddress.php
@@ -0,0 +1,38 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Mail;
+
+use App\Models\User;
+use Illuminate\Bus\Queueable;
+use Illuminate\Mail\Mailable;
+use Illuminate\Mail\Mailables\Address;
+use Illuminate\Mail\Mailables\Content;
+use Illuminate\Mail\Mailables\Envelope;
+use Illuminate\Queue\SerializesModels;
+
+final class VerifyEmailAddress extends Mailable
+{
+    use Queueable;
+    use SerializesModels;
+
+    public function __construct(
+        private readonly User $user,
+    ) {}
+
+    public function envelope(): Envelope
+    {
+        return new Envelope(
+            subject: trans('verify-email.subject', ['site' => config('app.name')]),
+            to: [new Address($this->user->email, $this->user->name)],
+        );
+    }
+
+    public function content(): Content
+    {
+        return new Content(html: 'emails.verify-email', with: [
+            'verification_link' => $this->user->makeVerificationLink(),
+        ]);
+    }
+}
diff --git a/sourcecode/hub/app/Models/User.php b/sourcecode/hub/app/Models/User.php
index 5ad9cf0846..df31e1f1a9 100644
--- a/sourcecode/hub/app/Models/User.php
+++ b/sourcecode/hub/app/Models/User.php
@@ -18,6 +18,9 @@
 use SensitiveParameter;
 
 use function config;
+use function hash_equals;
+use function time;
+use function url;
 
 class User extends Model implements AuthenticatableContract
 {
@@ -35,6 +38,7 @@ class User extends Model implements AuthenticatableContract
     protected $casts = [
         'admin' => 'boolean',
         'debug_mode' => 'boolean',
+        'email_verified' => 'boolean',
     ];
 
     protected $fillable = [
@@ -67,8 +71,21 @@ class User extends Model implements AuthenticatableContract
         'locale' => 'en',
         'admin' => false,
         'debug_mode' => false,
+        // If false, emails are sent upon creating the user. Aside from the
+        // sign-up page, this is probably undesirable, so having it true is the
+        // safe default.
+        'email_verified' => true,
     ];
 
+    public function setEmailAttribute(string|null $email): void
+    {
+        $this->attributes['email'] = $email;
+
+        if ($this->exists && $email !== $this->getOriginal('email')) {
+            $this->attributes['email_verified'] = false;
+        }
+    }
+
     public function getApiKey(): string
     {
         return $this->id;
@@ -98,6 +115,21 @@ public function getApiAuthorization(): string
             base64_encode($this->getApiKey() . ':' . $this->getApiSecret());
     }
 
+    public function checkVerificationDetails(string $hash, int $time): bool
+    {
+        return hash_equals(hash('sha256', $time . '@' . $this->email), $hash);
+    }
+
+    public function makeVerificationLink(): string
+    {
+        $time = time();
+
+        return url()->temporarySignedRoute('user.verify-email', 3600, [
+            'hash' => hash('sha256', $time . '@' . $this->email),
+            'time' => time(),
+        ]);
+    }
+
     public function getAuthIdentifierName(): string
     {
         return 'email';
diff --git a/sourcecode/hub/database/factories/UserFactory.php b/sourcecode/hub/database/factories/UserFactory.php
index b12984b5f9..af94511392 100644
--- a/sourcecode/hub/database/factories/UserFactory.php
+++ b/sourcecode/hub/database/factories/UserFactory.php
@@ -22,6 +22,7 @@ public function definition(): array
         return [
             'name' => $name,
             'email' => $email,
+            'email_verified' => true,
             'password' => Hash::make($this->faker->password),
             'admin' => false,
             'locale' => 'en',
@@ -34,9 +35,12 @@ public function name(string $name): static
         return $this->state(['name' => $name]);
     }
 
-    public function withEmail(string $email): static
+    public function withEmail(string $email, bool $verified = true): static
     {
-        return $this->state(['email' => $email]);
+        return $this->state([
+            'email' => $email,
+            'email_verified' => $verified,
+        ]);
     }
 
     public function withPasswordResetToken(): static
diff --git a/sourcecode/hub/database/migrations/2025_01_16_080000_add_email_verified_column.php b/sourcecode/hub/database/migrations/2025_01_16_080000_add_email_verified_column.php
new file mode 100644
index 0000000000..42500932cc
--- /dev/null
+++ b/sourcecode/hub/database/migrations/2025_01_16_080000_add_email_verified_column.php
@@ -0,0 +1,31 @@
+<?php
+
+declare(strict_types=1);
+
+use Illuminate\Database\Migrations\Migration;
+use Illuminate\Database\PostgresConnection;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Support\Facades\DB;
+use Illuminate\Support\Facades\Schema;
+
+return new class extends Migration {
+    public function up(): void
+    {
+        Schema::table('users', function (Blueprint $table) {
+            $table->boolean('email_verified')->default(false);
+        });
+
+        if (DB::connection() instanceof PostgresConnection) {
+            DB::update('UPDATE users SET email_verified = true WHERE admin');
+        } else {
+            DB::update('UPDATE users SET email_verified = 1 WHERE admin = 1');
+        }
+    }
+
+    public function down(): void
+    {
+        Schema::table('users', function (Blueprint $table) {
+            $table->dropColumn('email_verified');
+        });
+    }
+};
diff --git a/sourcecode/hub/lang/en/email-changed.php b/sourcecode/hub/lang/en/email-changed.php
new file mode 100644
index 0000000000..292d58021c
--- /dev/null
+++ b/sourcecode/hub/lang/en/email-changed.php
@@ -0,0 +1,7 @@
+<?php
+
+return [
+    'subject' => 'Email address changed',
+    'summary' => 'Someone (hopefully you) changed the email address on your :site account.',
+    'unrecognised-action' => "If you didn't make this change, please get in touch with the :site administrator.",
+];
diff --git a/sourcecode/hub/lang/en/messages.php b/sourcecode/hub/lang/en/messages.php
index c08c80c3d1..e0d0d9a8c7 100644
--- a/sourcecode/hub/lang/en/messages.php
+++ b/sourcecode/hub/lang/en/messages.php
@@ -71,10 +71,9 @@
     'reset-password' => 'Reset password',
     'submit' => 'Submit',
     'alert-password-reset' => "You should soon receive a password reset link. If you don't receive one, check that your email was spelt correctly. Contact support if you still don't receive an email",
-    'reset-password-email-message' => 'You have requested to reset your password',
+    'reset-password-email-summary' => 'A password reset has been requested for your account.',
     'reset-password-email-action' => 'To reset your password, click the following link:',
-    'reset-password-email-note' => 'If you did not request a password reset, no further action is required',
-    'reset-password-email-ignore' => 'If you ignore this message, your password will not be changed',
+    'reset-password-email-unknown' => 'If you did not request a password reset, no further action is required.',
     'reset-password-email-thanks' => 'Thank you for using :site',
     'alert-password-reset-success' => 'Password has been reset successfully',
     'alert-password-reset-invalid-token' => 'Invalid or expired password reset token',
@@ -238,6 +237,10 @@
     'context-added' => 'The context was added.',
     'theme-edlib' => 'Edlib light',
     'theme-dark' => 'Edlib dark',
+    'unverified-email-notice' => 'Your email address is unverified. Some functionality will be unavailable.',
+    'verify-my-email' => 'Verify my email',
+    'verification-email-sent' => 'A verification email has been sent to the address associated with your account.',
+    'your-account-has-been-verified' => 'Your account has been verified.',
     'attach-context-to-contents' => 'Attach context to contents',
     'attach-context-to-contents-warning' => 'This adds a context to all contents',
     'start-job' => 'Start job',
diff --git a/sourcecode/hub/lang/en/verify-email.php b/sourcecode/hub/lang/en/verify-email.php
new file mode 100644
index 0000000000..9a0f64896b
--- /dev/null
+++ b/sourcecode/hub/lang/en/verify-email.php
@@ -0,0 +1,6 @@
+<?php
+
+return [
+    'subject' => 'Verify your :site account',
+    'summary' => 'To verify your :site account, click the link below. If you aren\'t already logged in, you must do so for verification to take effect.',
+];
diff --git a/sourcecode/hub/resources/views/components/email-layout.blade.php b/sourcecode/hub/resources/views/components/email-layout.blade.php
new file mode 100644
index 0000000000..7fc0512b0a
--- /dev/null
+++ b/sourcecode/hub/resources/views/components/email-layout.blade.php
@@ -0,0 +1,17 @@
+{{--
+  Before changing this, note that some commonly used email clients are stuck in
+  the stone ages (as of 2025), and don't support the HTML5 doctype or the
+  <style> element.
+--}}
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+    "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html>
+    <head>
+        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+        <title>{{ $title }}</title>
+    </head>
+
+    <body style="font-family: helvetica, arial, sans-serif; line-height: 1.5; max-width: 600px">
+        {{ $slot }}
+    </body>
+</html>
diff --git a/sourcecode/hub/resources/views/emails/email-changed.blade.php b/sourcecode/hub/resources/views/emails/email-changed.blade.php
new file mode 100644
index 0000000000..25e041e96c
--- /dev/null
+++ b/sourcecode/hub/resources/views/emails/email-changed.blade.php
@@ -0,0 +1,7 @@
+<x-email-layout>
+    <x-slot:title>{{ trans('email-changed.subject') }}</x-slot:title>
+
+    <p>{{ trans('email-changed.summary', ['site' => config('app.name')]) }}</p>
+
+    <p>{{ trans('email-changed.unrecognised-action', ['site' => config('app.name')]) }}</p>
+</x-email-layout>
diff --git a/sourcecode/hub/resources/views/emails/reset-password.blade.php b/sourcecode/hub/resources/views/emails/reset-password.blade.php
index ccc0d45566..82f15ea4b3 100644
--- a/sourcecode/hub/resources/views/emails/reset-password.blade.php
+++ b/sourcecode/hub/resources/views/emails/reset-password.blade.php
@@ -1,54 +1,7 @@
-<!DOCTYPE html>
-<html>
-<head>
-    <meta charset="utf-8">
-    <meta http-equiv="X-UA-Compatible" content="IE=edge">
-    <title>{{ trans('messages.reset-password') }}</title>
-    <style>
-        body {
-            font-family: Arial, sans-serif;
-            line-height: 1.5;
-            background-color: #f2f2f2;
-            margin: 0;
-            padding: 0;
-        }
-        .container {
-            max-width: 600px;
-            margin: 0 auto;
-            padding: 20px;
-            background-color: #ffffff;
-        }
-        h1 {
-            color: #333333;
-            font-size: 24px;
-            margin-bottom: 20px;
-        }
-        p {
-            color: #555555;
-            font-size: 16px;
-            margin-bottom: 10px;
-        }
-        a {
-            color: #007bff;
-            text-decoration: none;
-        }
-        .footer {
-            margin-top: 20px;
-            text-align: center;
-        }
-    </style>
-</head>
-<body>
-<div class="container">
-    <h1>{{ trans('messages.reset-password') }}</h1>
-    <p>{{ trans('messages.reset-password-email-message') }}</p>
+<x-email-layout>
+    <x-slot:title>{{ trans('messages.reset-password') }}</x-slot:title>
+    <p>{{ trans('messages.reset-password-email-summary') }}</p>
     <p>{{ trans('messages.reset-password-email-action') }} <a href="{{ $resetLink }}">{{ trans('messages.reset-password') }}</a></p>
-    <p>{{ trans('messages.reset-password-email-note') }}</p>
-    <p>{{ trans('messages.reset-password-email-ignore') }}</p>
+    <p>{{ trans('messages.reset-password-email-unknown') }}</p>
     <p>{{ trans('messages.reset-password-email-thanks', ['site' => config('app.name')]) }}</p>
-</div>
-<div class="footer">
-    <p>{{ config('app.name') }}</p>
-</div>
-</body>
-</html>
+</x-email-layout>
diff --git a/sourcecode/hub/resources/views/emails/verify-email.blade.php b/sourcecode/hub/resources/views/emails/verify-email.blade.php
new file mode 100644
index 0000000000..a02083de76
--- /dev/null
+++ b/sourcecode/hub/resources/views/emails/verify-email.blade.php
@@ -0,0 +1,7 @@
+<x-email-layout>
+    <x-slot:title></x-slot:title>
+
+    <p>{{ trans('verify-email.summary', ['site' => config('app.name')]) }}</p>
+
+    <p><a href="{{ $verification_link }}">{{ trans('messages.verify-my-email') }}</a></p>
+</x-email-layout>
diff --git a/sourcecode/hub/resources/views/user/my-account.blade.php b/sourcecode/hub/resources/views/user/my-account.blade.php
index 07704eb583..aaf48b273b 100644
--- a/sourcecode/hub/resources/views/user/my-account.blade.php
+++ b/sourcecode/hub/resources/views/user/my-account.blade.php
@@ -1,41 +1,57 @@
 <x-layout>
     <x-slot:title>{{ trans('messages.my-account') }}</x-slot:title>
 
-    <x-form action="{{ route('user.update-account') }}">
-        <h5>{{ trans('messages.change-profile-name') }}</h5>
+    @if (!$user->email_verified)
+        <div class="alert alert-warning">
+            <p>{{ trans('messages.unverified-email-notice') }}</p>
 
-        <x-form.field
-            name="name"
-            type="text"
-            :label="trans('messages.name')"
-            :value="old('name', $user->name)"
-            required
-        />
+            <x-form action="{{ route('user.send-verification-email') }}">
+                <x-form.button class="btn btn-primary">{{ trans('messages.verify-my-email') }}</x-form.button>
+            </x-form>
+        </div>
+    @endif
+
+    <x-form action="{{ route('user.update-account') }}" class="mt-3">
+        <fieldset>
+            <legend>{{ trans('messages.change-profile-name') }}</legend>
+
+            <x-form.field
+                name="name"
+                type="text"
+                :label="trans('messages.name')"
+                :value="old('name', $user->name)"
+                required
+            />
+        </fieldset>
 
-        <h5>{{ trans('messages.change-password') }}</h5>
+        <fieldset>
+            <legend>{{ trans('messages.change-password') }}</legend>
 
-        <x-form.field
-            name="password"
-            type="password"
-            :label="trans('messages.password')"
-            autocomplete="new-password"
-        />
+            <x-form.field
+                name="password"
+                type="password"
+                :label="trans('messages.password')"
+                autocomplete="new-password"
+            />
 
-        <x-form.field
-            name="password_confirmation"
-            type="password"
-            :label="trans('messages.password-confirmation')"
-            autocomplete="new-password"
-        />
+            <x-form.field
+                name="password_confirmation"
+                type="password"
+                :label="trans('messages.password-confirmation')"
+                autocomplete="new-password"
+            />
+        </fieldset>
 
-        <h5>{{ trans('messages.change-email') }}</h5>
+        <fieldset>
+            <legend>{{ trans('messages.change-email') }}</legend>
 
-        <x-form.field
-            name="email"
-            type="email"
-            :label="trans('messages.email-address')"
-            :value="old('email', $user->email)"
-        />
+            <x-form.field
+                name="email"
+                type="email"
+                :label="trans('messages.email-address')"
+                :value="old('email', $user->email)"
+            />
+        </fieldset>
 
         <x-form.button class="btn-primary">
             {{ trans('messages.save') }}
diff --git a/sourcecode/hub/routes/web.php b/sourcecode/hub/routes/web.php
index ddc0943006..a91baada12 100644
--- a/sourcecode/hub/routes/web.php
+++ b/sourcecode/hub/routes/web.php
@@ -221,6 +221,16 @@
         ->middleware('lti.launch-type:ContentItemSelectionRequest');
 });
 
+Route::post('/send-verification-email')
+    ->uses([UserController::class, 'sendVerificationEmail'])
+    ->name('user.send-verification-email')
+    ->middleware(['auth']);
+
+Route::get('/verify-email')
+    ->uses([UserController::class, 'verifyEmail'])
+    ->name('user.verify-email')
+    ->middleware(['signed', 'auth']);
+
 Route::controller(UserController::class)->group(function () {
     Route::middleware('can:register')->group(function () {
         Route::get('/register', 'register')->name('register');
diff --git a/sourcecode/hub/tests/Browser/UserTest.php b/sourcecode/hub/tests/Browser/UserTest.php
index 81326f7e1d..d23280e072 100644
--- a/sourcecode/hub/tests/Browser/UserTest.php
+++ b/sourcecode/hub/tests/Browser/UserTest.php
@@ -12,7 +12,7 @@
 
 final class UserTest extends DuskTestCase
 {
-    public function testUserCanSignUp(): void
+    public function testUsersCanSignUpAndBeNotVerified(): void
     {
         $this->browse(function (Browser $browser) {
             $browser->visit('/register')
@@ -22,7 +22,11 @@ public function testUserCanSignUp(): void
                 ->type('password', 'scaramouche')
                 ->type('password_confirmation', 'scaramouche')
                 ->press('Sign up')
-                ->assertAuthenticated();
+                ->assertAuthenticated()
+                ->visit('/')
+                ->press('Freddie Mercury')
+                ->clickLink('My Account')
+                ->assertSee('Your email address is unverified.');
         });
     }
 
diff --git a/sourcecode/hub/tests/Feature/LtiPlatformTest.php b/sourcecode/hub/tests/Feature/LtiPlatformTest.php
index 9f15548c0f..b1db416787 100644
--- a/sourcecode/hub/tests/Feature/LtiPlatformTest.php
+++ b/sourcecode/hub/tests/Feature/LtiPlatformTest.php
@@ -122,4 +122,33 @@ public function testLaunchesFromLoggedInUsersContainUserDetails(): void
         $this->assertSame('chandler@bing.com', $request->get('lis_person_contact_email_primary'));
         $this->assertSame($user->id, $request->get('user_id'));
     }
+
+    public function testLaunchDoesNotContainUnverifiedEmail(): void
+    {
+        $user = User::factory()
+            ->name('Chanandler Bong')
+            ->withEmail('chandler@bing.com', verified: false)
+            ->create();
+
+        $this->actingAs($user);
+
+        $tool = LtiTool::factory()->create([
+            'send_name' => true,
+            'send_email' => true,
+        ]);
+
+        $request = $this->app->make(LtiLaunchBuilder::class)
+            ->toItemSelectionLaunch(
+                $tool,
+                'https://example.com/',
+                'https://return.example.com/',
+            )
+            ->getRequest();
+
+        $this->assertSame('Chanandler Bong', $request->get('lis_person_name_full'));
+        $this->assertSame('Bong', $request->get('lis_person_name_family'));
+        $this->assertSame('Chanandler', $request->get('lis_person_name_given'));
+        $this->assertFalse($request->has('lis_person_contact_email_primary'));
+        $this->assertSame($user->id, $request->get('user_id'));
+    }
 }