diff --git a/backend/app/Email/EmailConfirmationToken/CreateEmailConfirmationTokenDto.php b/backend/app/Email/EmailConfirmationToken/CreateEmailConfirmationTokenDto.php
new file mode 100644
index 0000000..58a17ed
--- /dev/null
+++ b/backend/app/Email/EmailConfirmationToken/CreateEmailConfirmationTokenDto.php
@@ -0,0 +1,14 @@
+<?php
+
+namespace App\Email\EmailConfirmationToken;
+
+use App\User\User;
+use DateTimeImmutable;
+
+readonly class CreateEmailConfirmationTokenDto
+{
+    public function __construct(
+        public User $user,
+        public DateTimeImmutable $availableTo,
+    ) {}
+}
diff --git a/backend/app/Email/EmailConfirmationToken/EloquentEmailConfirmationTokenRepository.php b/backend/app/Email/EmailConfirmationToken/EloquentEmailConfirmationTokenRepository.php
new file mode 100644
index 0000000..f5d803e
--- /dev/null
+++ b/backend/app/Email/EmailConfirmationToken/EloquentEmailConfirmationTokenRepository.php
@@ -0,0 +1,73 @@
+<?php
+
+namespace App\Email\EmailConfirmationToken;
+
+use App\User\User;
+use App\User\UserRepository;
+use DateTimeImmutable;
+use DateTimeZone;
+use DomainException;
+
+class EloquentEmailConfirmationTokenRepository implements EmailConfirmationTokenRepository
+{
+    public function __construct(
+        private UserRepository $userRepo,
+    ) {}
+
+    public function create(
+        CreateEmailConfirmationTokenDto $dto,
+    ): EmailConfirmationToken {
+        $model = EmailConfirmationTokenModel::create([
+            'user_id' => $dto->user->getId(),
+            'token' => bin2hex(random_bytes(32)),
+            'available_to' => $dto->availableTo,
+        ]);
+
+        return $this->toDomain($model);
+    }
+
+    public function findByToken(string $token): ?EmailConfirmationToken
+    {
+        $model = EmailConfirmationTokenModel::where(
+            'token', $token,
+        )->first();
+
+        return $model === null ? null : $this->toDomain($model);
+    }
+
+    public function findByUser(User $user): ?EmailConfirmationToken
+    {
+        $model = EmailConfirmationTokenModel::where(
+            'user_id', $user->getId(),
+        )->first();
+
+        return $model === null ? null : $this->toDomain($model);
+    }
+
+    public function delete(int $id): void
+    {
+        EmailConfirmationTokenModel::query()->where('id', $id)->delete();
+    }
+
+    private function toDomain(
+        EmailConfirmationTokenModel $model,
+    ): EmailConfirmationToken {
+        $user = $this->userRepo->find($model->user_id);
+        if ($user === null) {
+            throw new DomainException(
+                "User with id {$model->user_id} not found"
+            );
+        }
+        $availableTo = new DateTimeImmutable(
+            $model->available_to->toDateTimeString(),
+            new DateTimeZone('UTC'),
+        );
+
+        return new EmailConfirmationToken(
+            id: $model->id,
+            user: $user,
+            availableTo: $availableTo,
+            token: $model->token,
+        );
+    }
+}
diff --git a/backend/app/Email/EmailConfirmationToken/EmailConfirmationToken.php b/backend/app/Email/EmailConfirmationToken/EmailConfirmationToken.php
new file mode 100644
index 0000000..d2fb638
--- /dev/null
+++ b/backend/app/Email/EmailConfirmationToken/EmailConfirmationToken.php
@@ -0,0 +1,36 @@
+<?php
+
+namespace App\Email\EmailConfirmationToken;
+
+use App\User\User;
+use DateTimeImmutable;
+
+class EmailConfirmationToken
+{
+    public function __construct(
+        private int $id,
+        private User $user,
+        private DateTimeImmutable $availableTo,
+        private string $token,
+    ) {}
+
+    public function getId(): int
+    {
+        return $this->id;
+    }
+
+    public function getUser(): User
+    {
+        return $this->user;
+    }
+
+    public function getAvailableTo(): DateTimeImmutable
+    {
+        return $this->availableTo;
+    }
+
+    public function getToken(): string
+    {
+        return $this->token;
+    }
+}
diff --git a/backend/app/Email/EmailConfirmationToken/EmailConfirmationTokenModel.php b/backend/app/Email/EmailConfirmationToken/EmailConfirmationTokenModel.php
new file mode 100644
index 0000000..b8214cd
--- /dev/null
+++ b/backend/app/Email/EmailConfirmationToken/EmailConfirmationTokenModel.php
@@ -0,0 +1,40 @@
+<?php
+
+namespace App\Email\EmailConfirmationToken;
+
+use DateTimeImmutable;
+use Illuminate\Database\Eloquent\Builder;
+use Illuminate\Database\Eloquent\Model;
+
+/**
+ * @property int $id
+ * @property int $user_id
+ * @property string $token
+ * @property DateTimeImmutable $available_to
+ *
+ * @method static Builder<static>|EmailConfirmationTokenModel newModelQuery()
+ * @method static Builder<static>|EmailConfirmationTokenModel newQuery()
+ * @method static Builder<static>|EmailConfirmationTokenModel query()
+ * @method static Builder<static>|EmailConfirmationTokenModel whereId($value)
+ * @method static Builder<static>|EmailConfirmationTokenModel whereUserId($value)
+ * @method static Builder<static>|EmailConfirmationTokenModel whereToken($value)
+ * @method static Builder<static>|EmailConfirmationTokenModel whereAvailableTo($value)
+ *
+ * @mixin \Eloquent
+ */
+class EmailConfirmationTokenModel extends Model
+{
+    protected $table = 'email_confirmation_tokens';
+
+    public $timestamps = false;
+
+    protected $fillable = [
+        'user_id',
+        'token',
+        'available_to',
+    ];
+
+    protected $casts = [
+        'available_to' => 'immutable_datetime',
+    ];
+}
diff --git a/backend/app/Email/EmailConfirmationToken/EmailConfirmationTokenRepository.php b/backend/app/Email/EmailConfirmationToken/EmailConfirmationTokenRepository.php
new file mode 100644
index 0000000..ed71f62
--- /dev/null
+++ b/backend/app/Email/EmailConfirmationToken/EmailConfirmationTokenRepository.php
@@ -0,0 +1,18 @@
+<?php
+
+namespace App\Email\EmailConfirmationToken;
+
+use App\User\User;
+
+interface EmailConfirmationTokenRepository
+{
+    public function create(
+        CreateEmailConfirmationTokenDto $dto,
+    ): EmailConfirmationToken;
+
+    public function findByToken(string $token): ?EmailConfirmationToken;
+
+    public function findByUser(User $user): ?EmailConfirmationToken;
+
+    public function delete(int $id): void;
+}
diff --git a/backend/database/migrations/2026_05_06_000003_create_email_confirmation_tokens_table.php b/backend/database/migrations/2026_05_06_000003_create_email_confirmation_tokens_table.php
new file mode 100644
index 0000000..c72d0e2
--- /dev/null
+++ b/backend/database/migrations/2026_05_06_000003_create_email_confirmation_tokens_table.php
@@ -0,0 +1,25 @@
+<?php
+
+use Illuminate\Database\Migrations\Migration;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Support\Facades\Schema;
+
+return new class extends Migration
+{
+    public function up(): void
+    {
+        Schema::create('email_confirmation_tokens', function (Blueprint $table) {
+            $table->id();
+            $table->foreignId('user_id')
+                ->constrained('users')
+                ->cascadeOnDelete();
+            $table->string('token')->unique();
+            $table->dateTime('available_to');
+        });
+    }
+
+    public function down(): void
+    {
+        Schema::dropIfExists('email_confirmation_tokens');
+    }
+};
diff --git a/backend/tests/Fakes/FakeEmailConfirmationTokenRepository.php b/backend/tests/Fakes/FakeEmailConfirmationTokenRepository.php
new file mode 100644
index 0000000..8ef77ad
--- /dev/null
+++ b/backend/tests/Fakes/FakeEmailConfirmationTokenRepository.php
@@ -0,0 +1,82 @@
+<?php
+
+namespace Tests\Fakes;
+
+use App\Email\EmailConfirmationToken\CreateEmailConfirmationTokenDto;
+use App\Email\EmailConfirmationToken\EmailConfirmationToken;
+use App\Email\EmailConfirmationToken\EmailConfirmationTokenRepository;
+use App\User\User;
+use App\User\UserRepository;
+
+class FakeEmailConfirmationTokenRepository implements EmailConfirmationTokenRepository
+{
+    /**
+     * @var EmailConfirmationToken[]
+     */
+    private array $existingTokens = [];
+
+    public function __construct(
+        private UserRepository $userRepo,
+    ) {}
+
+    public function create(
+        CreateEmailConfirmationTokenDto $dto,
+    ): EmailConfirmationToken {
+        $id = $this->nextId();
+        $token = new EmailConfirmationToken(
+            id: $id,
+            user: $dto->user,
+            availableTo: $dto->availableTo,
+            token: bin2hex(random_bytes(32)),
+        );
+        $this->existingTokens[$id] = $token;
+
+        return $this->copy($token);
+    }
+
+    public function findByToken(string $token): ?EmailConfirmationToken
+    {
+        foreach ($this->existingTokens as $existing) {
+            if ($existing->getToken() === $token) {
+                return $this->copy($existing);
+            }
+        }
+
+        return null;
+    }
+
+    public function findByUser(User $user): ?EmailConfirmationToken
+    {
+        foreach ($this->existingTokens as $existing) {
+            if ($existing->getUser()->getId() === $user->getId()) {
+                return $this->copy($existing);
+            }
+        }
+
+        return null;
+    }
+
+    public function delete(int $id): void
+    {
+        unset($this->existingTokens[$id]);
+    }
+
+    private function copy(
+        EmailConfirmationToken $token,
+    ): EmailConfirmationToken {
+        $user = $this->userRepo->find($token->getUser()->getId())
+            ?? $token->getUser();
+
+        return new EmailConfirmationToken(
+            id: $token->getId(),
+            user: $user,
+            availableTo: $token->getAvailableTo(),
+            token: $token->getToken(),
+        );
+    }
+
+    private function nextId(): int
+    {
+        return count($this->existingTokens) + 1;
+    }
+}