diff --git a/src/services/notify/events/email-verification.ts b/src/services/notify/events/email-verification.ts
index fda6fb8f..d7fe5f97 100644
--- a/src/services/notify/events/email-verification.ts
+++ b/src/services/notify/events/email-verification.ts
@@ -5,6 +5,7 @@ import {
   emailTemplateTtlMs,
   emailVerificationManifestUrl,
   urlEmailVerification,
+  VERIFY_LIFESPAN_MS,
 } from "../../../config/constants";
 import type User from "../../../data/entity/user.entity";
 import { fetchJsonFromUrl } from "../../../data/utils";
@@ -114,11 +115,10 @@ export async function sendEmailVerification(
     throw new Error("User email is required for verification");
   }
 
-  const token = jwt.sign({
-    id: user.id,
-    email: user.email,
-    type: "verify" as TokenType,
-  });
+  const token = jwt.sign(
+    { id: user.id, email: user.email, type: "verify" as TokenType },
+    { expiresIn: `${VERIFY_LIFESPAN_MS}` },
+  );
   const url = `${urlEmailVerification}/${token}`;
 
   logger.debug(`sendEmailVerification: ${user.email}, url: ${url}`);
diff --git a/src/test/services/notify/email-verification.test.ts b/src/test/services/notify/email-verification.test.ts
index 1a616bed..cee70479 100644
--- a/src/test/services/notify/email-verification.test.ts
+++ b/src/test/services/notify/email-verification.test.ts
@@ -1,6 +1,6 @@
 import { Lang } from "need4deed-sdk";
 import { beforeEach, describe, expect, it, vi } from "vitest";
-import { urlEmailVerification } from "../../../config/constants";
+import { urlEmailVerification, VERIFY_LIFESPAN_MS } from "../../../config/constants";
 import { fetchJsonFromUrl } from "../../../data/utils";
 import {
   resetVerificationTemplateCache,
@@ -12,7 +12,8 @@ vi.mock("../../../data/utils", () => ({
 }));
 
 const send = vi.fn();
-const deps = { email: { send }, jwt: { sign: () => "tok" } } as any;
+const sign = vi.fn(() => "tok");
+const deps = { email: { send }, jwt: { sign } } as any;
 const user = (over: any = {}) => ({ id: 1, email: "u@x.de", ...over });
 const expectedUrl = `${urlEmailVerification}/tok`;
 
@@ -90,4 +91,15 @@ describe("sendEmailVerification", () => {
       sendEmailVerification(deps, user({ email: undefined })),
     ).rejects.toThrow("User email is required");
   });
+
+  it("signs the token with VERIFY_LIFESPAN_MS as expiresIn", async () => {
+    vi.mocked(fetchJsonFromUrl).mockResolvedValue(manifest);
+
+    await sendEmailVerification(deps, user());
+
+    expect(sign).toHaveBeenCalledWith(
+      expect.objectContaining({ type: "verify" }),
+      expect.objectContaining({ expiresIn: `${VERIFY_LIFESPAN_MS}` }),
+    );
+  });
 });