Before

<!doctype html>
<html lang="ar" dir="rtl">
	<meta charset="utf-8">
		<title>LG-013 — BEFORE</title>
		<body style="font:16px/1.6 system-ui,sans-serif">
			<form id="signup" dir="rtl">
				<label for="fullname">الاسم الكامل</label>
				<!-- WRONG: ASCII-only pattern rejects Arabic letters -->
				<input id="fullname" name="fullname" type="text" dir="rtl" placeholder="اكتب اسمك" pattern="^[A-Za-z ]+$" required>
				<button>إنشاء حساب</button>
				<p id="err" style="color:#b91c1c"/>
			</form>
			<script>
			const f = document.getElementById('signup');
			f.addEventListener('submit', e => {
			  const v = document.getElementById('fullname').value;
			  if (!/^[A-Za-z ]+$/.test(v)) {
				e.preventDefault();
				document.getElementById('err').textContent =
				  'يُرفض الإدخال: الحروف العربية غير مسموح بها.';
			  }
			});
			</script>
	</body>
</html>


After

<!doctype html>
<html lang="ar" dir="rtl">
	<meta charset="utf-8">
		<title>LG-013 — AFTER</title>
		<body style="font:16px/1.6 system-ui,sans-serif">
			<form id="signup" dir="rtl">
				<label for="fullname">الاسم الكامل</label>
				<!-- RIGHT: allow Unicode letters + marks + common separators -->
				<input id="fullname" name="fullname" type="text" dir="rtl" placeholder="اكتب اسمك" required inputmode="text">
					<button>إنشاء حساب</button>
					<p id="ok" style="color:#047857"/>
				</form>
				<script>
				// Client-side example acceptance (not mandatory for your role):
				// Accept Unicode letters (\p{L}), marks (\p{M}), space, hyphen, apostrophe, dot.
				const ACCEPT = /^[\p{L}\p{M} \-'.]+$/u;
				document.getElementById('signup').addEventListener('submit', e => {
				  const v = document.getElementById('fullname').value;
				  if (!ACCEPT.test(v)) { e.preventDefault(); alert('يُرجى إدخال اسم صحيح.'); }
				  else document.getElementById('ok').textContent = '✓ تم القبول';
				});
				</script>
		</body>
</html>


Notes:
Severity: P1
Rule: SG §4 Forms — Local Script Acceptance; RS §1 Core
Fix: Configure name/address fields to accept local script (Arabic). Remove ASCII-only constraints like pattern="^[A-Za-z ]+$". If validation is required, use Unicode-safe rules (letters + marks + space, hyphen, apostrophe, dot). Do not force transliteration to Latin. Technical fields (email/OTP/card) keep their own Latin-only rules.
Verify: 
• "سارة الأحمد" and "شارع الملك فهد" submit without client/server errors.
• Value persists across steps/emails; no substitution to Latin.
• Email/OTP/card behaviors unchanged (Latin-only where required).