diff --git a/lib/mv/authorization/permission_sets.ex b/lib/mv/authorization/permission_sets.ex
index 1d5c87b..200a0dd 100644
--- a/lib/mv/authorization/permission_sets.ex
+++ b/lib/mv/authorization/permission_sets.ex
@@ -118,12 +118,16 @@ defmodule Mv.Authorization.PermissionSets do
         %{resource: "Group", action: :read, scope: :all, granted: true}
       ],
       pages: [
-        # Home page
-        "/",
-        # Own profile
+        # No "/" - Mitglied must not see member index at root (same content as /members).
+        # Own profile (sidebar links to /users/:id) and own user edit
         "/profile",
-        # Linked member detail (filtered by policy)
-        "/members/:id"
+        "/users/:id",
+        "/users/:id/edit",
+        "/users/:id/show/edit",
+        # Linked member detail and edit (data access filtered by policy scope: :linked)
+        "/members/:id",
+        "/members/:id/edit",
+        "/members/:id/show/edit"
       ]
     }
   end