Know it's really your loved one—every time.
Deepfake voice and video scams are rising. Family Moat gives your family a shared daily password so you can verify callers instantly—offline, with no servers and no stored passwords.
Welcome to Family Moat
Simple verification that stops impersonation scams
Today's family password
Ask for the password of the day to confirm it's really them—on any call or video chat.
Works without internet
Passwords are generated on your device, so verification still works during outages or travel.
Nothing stored online
Privacy-first by design: no server-stored passwords to leak or steal.
Built on proven crypto
Uses HMAC-SHA256, a widely trusted standard used across banking and government systems.
Recommended phone hygiene
Family Moat protects you from impersonation calls — but a healthy phone is the foundation of all mobile security. For defense against sophisticated spyware (the kind aimed at journalists and executives), we recommend these free steps from Apple and Google:
- Turn on Apple Lockdown Mode on iPhone (Settings → Privacy & Security → Lockdown Mode) — documented by Citizen Lab to block real Pegasus attacks.
- Keep iOS or Android fully up to date — most spyware relies on unpatched vulnerabilities.
- Restart your phone regularly. Some advanced spyware doesn't survive a reboot.
- Be cautious with unexpected links, attachments, and calls — even from numbers you recognize.
Family Moat is not affiliated with Apple, Google, or Citizen Lab. These recommendations are independent of our service.
How it works (in under a minute)
Set a shared family code once. Family Moat generates a new password daily—then you verify loved ones instantly when something feels off.
Create your Family Moat
One member of the family creates an account as administrator of the "Family Moat".
Coming soon
Invite your family
Invite your family members into the "Family Moat".
Get your shared password
The "Family Moat" secured system shares a changing password only to the members of the Family in the Moat.
You are protected!!
Refer to the Family Moat app if you ever need to confirm the identity of a family member in the Moat.
See it in action
Use the app when needed and refer to the changing password that updates on all of your family phones. No need to memorize that secret password!!
Pricing coming soon
Banks and agencies agree:
your family needs a password.
Major banks, the U.S. FTC and the FBI all give families the same advice for protecting against AI voice scams: agree on a private family code word. Family Moat is designed to make that guidance practical for everyday use.
On the grandparent scam: "Ask probing questions that only the real person would be able to answer (a pet nickname, for example)" — and watch for AI voice replication that makes the caller sound exactly like a loved one.
"Create a secret word with your family members so you can ask them for the word if you're ever unsure of an individual's identity."
BMO's cybersecurity experts recommend a family safe word as a defense against AI voice clones and deepfake "family emergency" scams — noting it takes only a 2–3 second voice clip to build a convincing fake of a loved one.
On the family emergency imposter scam: cheap AI voice-cloning services can impersonate a loved one from a short audio sample — and a pre-agreed family code word lets you verify the caller is who they claim to be.
Public service announcement warning that scammers can clone a loved one's voice from short social-media clips, and recommending a pre-agreed verbal code with family.
Cybersecurity experts and law enforcement recommend a family "safe word" — a unique phrase that can't be guessed from public information — to verify a loved one when AI voice cloning takes only 3 to 15 seconds of audio.
"A Safe Phrase is a previously agreed phrase that you and your inner circle can use to verify if you're truly speaking to them."
FHB names a family code word as the single most effective defense against AI voice scams — noting AI cloning can mimic a person's voice with remarkable accuracy from just a few seconds of recorded audio.
"Establish Family Code Words — create unique phrases or questions with family members that only you would know."
Families should "get together and create a code word or phrase, mentioned at the beginning of each and every correspondence" to verify identity.
"Establish a family safe word — and remember that a bank will never ask for your password or PIN over the phone."
The advice is right. The execution is the hard part.
Every institution above stops at "agree on a word with your family." Here's what goes wrong in real life — and what Family Moat does about it.
Quotes are excerpts from publicly available consumer guidance issued by the named institutions. Family Moat is not affiliated with or endorsed by any of them.
Patent Pending Technology
Family Moat is built on a patent-pending invention called the Deterministic Family Password Algorithm (DFPA).
Same password on every phone
Every family member's app produces the exact same daily password without ever talking to a server, so it works even when the internet doesn't.
A new password every day
Yesterday's password is useless tomorrow. Even if someone overheard it once, it can't be reused to impersonate your family.
Nothing stored, nothing to steal
Your family's password is never sent or saved anywhere. There's no database of family passwords for hackers to breach.
U.S. and international patent applications pending. "Family Moat" and the Family Moat logo are trademarks of 1001325352 Ontario Inc.
Built by a family, for families
Family Moat was created in response to a sharp rise in AI voice and video deepfake scams targeting parents, grandparents and children. A convincing fake of a loved one's voice can now be generated in seconds — and traditional "security questions" simply don't hold up anymore.
Our team set out to build something that anyone in a family could use in the moment a call feels wrong: a single, shared password that the whole family already knows for the day, with no codes to memorize and no app to log into in a panic.
Family Moat is operated by 1001325352 Ontario Inc., an Ontario, Canada corporation. We do not sell your data and we never will. For questions, partnerships or press inquiries, please use the Contact Us section below.
“I skate not to where the puck is, but to where it's going.”— attributed to the greatest ice hockey player of all time
That mindset is exactly how we think about the unfortunate and growing problem of sophisticated scammers. The technology is changing at such a fast pace that we need to be prepared not just for what we are experiencing today, but for what is coming — just like the famous quote about skating to where the puck is going.
I'm a father, son, husband and friend who has been deeply concerned about protecting my family. We have already been scammed by imposters who accessed my wife's banking information and claimed to be a bank security officer. It happens to the best of us, and the scary part of deepfake technology is how easy it has become to pretend to be someone you are not. We've all seen people on social media using filters in real time to impersonate someone else.
Thieves are constantly working on new ways to pull data from social media, employment sites and the various digital platforms that hold even the simplest digital imprints of you or your family. AI doesn't need much to create a real-time copy of you or a loved one.
We understand that some people may look at this technology and say, "I haven't been scammed — nothing's happened yet." Maybe that's true. But then why do we carry insurance on our homes, our cars and our lives? We carry it because it reduces the financial impact of an accident or a tragedy. We've built Family Moat to be so cost-effective that price is never a reason to go without it.
We hope you never need Family Moat's protection for your loved ones — but in the off chance that you do, we believe its value, its ease of use, and its unique security design (which can't be hacked through a server, because there is no server-side password to steal) are all good reasons to "skate to where the puck is going." Good luck, and enjoy your life with the Moat.
Sincerely,
S. Cox
President & CEO, Family Moat
FAQ
Quick answers to common questions about daily rotating passwords and offline verification.
Does Family Moat store passwords on a server?+
No. Passwords are generated on-device. Family Moat is designed so your family's passwords don't live online.
What if we don't have internet?+
It still works. Because passwords are generated on your device, you can verify loved ones even during outages or while traveling.
How do we use it during a suspicious call?+
Ask the caller for today's family password before sharing money, gift cards, account details, or personal information.
Which devices are supported?+
Family Moat works across iPhone, Android, and web browsers, so families can verify each other on the devices they already use.
Is this the same as a 2FA app?+
It's different. 2FA protects account logins. Family Moat helps you verify a person—especially when deepfake voice or impersonation is a risk.
How many languages are supported?+
Seven core languages: English, Spanish, French, Chinese, Arabic, Russian, and Japanese—with additional languages available in the demo.
What about phone-hacking spyware like Pegasus?+
We want to be straightforward: Family Moat is designed to stop AI voice-clone scams, deepfake impersonation, and "family emergency" fraud calls — the threats that target ordinary families every day. It is not designed to defend against nation-state spyware like NSO Group's Pegasus, and honestly, no app on the App Store can. Tools like Pegasus run at the operating-system level with root access, which means they see whatever the phone itself sees — inside any app, including banking apps, encrypted messengers, and ours.
The good news is that Pegasus is overwhelmingly aimed at a narrow group of targets (journalists, dissidents, political figures, senior executives). The fraud that actually reaches most families — a panicked phone call from someone who sounds exactly like your child or grandparent — is exactly what Family Moat is built to stop.
If you do have reason to believe you may be personally targeted by sophisticated spyware, the strongest practical defenses are: turn on Apple Lockdown Mode (Settings → Privacy & Security → Lockdown Mode), keep your phone's operating system fully up to date, restart your phone regularly, and enable Apple's notifications for state-sponsored attacks. These are independent of Family Moat and recommended by Citizen Lab and Apple.
Stop deepfake scam calls with a daily family password
Set up your family moat in minutes and verify loved ones instantly—without relying on servers or internet access.
Mobile apps coming soon
Send us an email and we will let you know when we are fully up and running on the app stores
Email us at info@familymoat.appPrivacy Policy
Effective Date: [insert date]
This Privacy Policy describes the types of personal information (PI) that company 1001325352 Ontario Inc. (herein referred to as "we", "our", or "the Company") collects, uses and discloses when individuals use our mobile application (app) "The Family Moat", available at www.familymoat.app.
The Family Moat app is an encrypted passcode system that members of a family can uniquely share with each other to protect against deepfake videos and phone scams. By using our app, you consent to the collection, use, and disclosure of your PI as described in this Privacy Policy.
We are committed to safeguarding the privacy of our users in compliance with applicable privacy legislation. Since our app may involve internet-based interactions, you acknowledge and agree that some of your PI may be securely transferred and stored outside of your home jurisdiction (which may have less stringent privacy laws), in accordance with this Privacy Policy.
This Privacy Policy may be updated from time to time. The Effective Date above indicates when this Privacy Policy was last updated.
How We Communicate With You
We may contact you via the app to help facilitate the services you have requested. We may also reply to direct emails from you to assist as needed.
Collection of Your Personal Information
Generally, PI is considered information that identifies you or makes you identifiable. We may collect the following types of personal information when you interact with us:
- name
- phone number
- your association with a specific family group and the phone numbers of each individual associated family member
- email address
- mailing address
- credit card number
We may also collect the following usage information when you use our app:
- IP address
- device information
- operation system information
How We Collect Your PI and Usage Information
Your PI is directly or indirectly collected from you when you choose to pay for and download the app or when you contact us for support. Payment information such as your credit card number is collected and used by the application store you choose to use, such as the Google Play Store or the App Store to facilitate download and payment for the app.
Usage information may be collected through the use of cookies when you interact with our app.
Cookies: Cookies are small files that save to your hard drive or to your browser's memory. You may accept or decline most cookies, but Necessary Cookies may be required for us to administer our services. If you choose not to allow certain functional cookies, the services offered on the app may not operate as expected.
Purposes For the Collection, Use and Disclosure of Your Personal Information
We collect your personal information and usage information to fulfill the following purposes:
- to facilitate the use of our app and any payment subscriptions
- to track number of users associated with each subscription group
- to assist our technical team in troubleshooting and resolving reported issues
We may also collect PI to verify your identity, verify the information you give us, comply with applicable laws, regulatory requirements or enforceable governmental requests, to detect and address security incidents, to prevent, detect, suppress or investigate criminal activity, to protect you and us against error, to help us recover any debt or obligation owed to us by you, and to conduct research and analysis for the development of our Services.
Transferring your Personal Information & Third-Party Service Providers
The PI collected from you in connection with your use of our app may be transferred to third-party service providers, such as subscription payment systems and cloud storage service providers for further processing, storage and to fulfill the specified purposes. We require our third-party service providers to implement and maintain appropriate safeguarding measures and to provide a comparable level of protection as described in this policy to PI that they process on our behalf.
Your PI may be transferred to third-party services providers outside of your home jurisdiction, which may have less stringent privacy laws.
In certain circumstances, we or our third-party service providers may be required to disclose your PI to courts, government authorities, law enforcement, or regulatory bodies in response to legally valid demands or requests, in compliance with the applicable laws of the jurisdiction where your PI is stored, which may be less stringent than those in Canada.
Retention of Your Personal Information
Your PI will be retained by us only for as long as necessary to accomplish the identified purposes for which it was collected, or as required by law, whichever is longer. When we are no longer obligated to retain your PI, we will destroy it or render it anonymous.
Safeguarding Your Personal Information
We use commercially reasonable technical, administrative and physical safeguards to protect your PI from loss, theft, any unauthorized access, disclosure, copying, use or modification. We use phone number verification using SMS one-time-password and encryption to ensure your PI is handled and stored securely.
We have procedures in place to deal with any suspected data security breach and will notify you and any applicable regulator of a data security breach where we are legally required to do so.
Third-Party Links
The app may also include links to websites operated by third parties. While we strive to link to websites that uphold high standards of privacy, we cannot be responsible for the content, security, or privacy practices of these third-party sites.
We are also not responsible for the privacy practices of other sites that link to our app. This Privacy Policy only applies to our practices regarding the collection, use and disclosure of your PI. Please refer to the privacy policies of those websites to learn more about their usage of your PI and your rights.
How To Amend and Access Your Personal Information
You can request to access the PI we hold about you. You can also request to amend the PI we hold about you, if there are any inaccuracies or if any of the information is incomplete. You can contact us at info@familymoat.app.
We will need to verify your identify before searching for or providing you with access to your information. There may be limits on your right to access the PI we hold about you, for example, if the information is subject to legal privilege, contains confidential information, relates to an investigation or a breach of an agreement or law, or contains personal information of other individuals that cannot be separated.
Contact Us
Your privacy is important to us. If you have any privacy concerns, please do not hesitate to contact our Privacy Officer at info@familymoat.app.