Meta has announced it will permanently discontinue end-to-end encryption (E2EE) for direct messages on Instagram, with the feature set to be removed after May 8, 2026. This decision, revealed on Instagram’s Help Center support page, represents a significant shift from the company’s previous commitment to enhancing privacy across its platforms.
The E2EE feature, which was first tested in 2021 as part of CEO Mark Zuckerberg’s vision for privacy-focused messaging, was officially rolled out in late 2023. However, it was only available as an opt-in option and limited to select regions, never becoming a default setting for all users. A spokesperson for Meta cited low adoption rates as the main reason for the removal, stating, “Very few people were opting in to end-to-end encrypted messaging in DMs, so we’re removing this option from Instagram in the coming months.”
When active, E2EE ensured that only the two participants in a conversation could read messages or listen to calls, effectively shielding content from government authorities, law enforcement, and Meta itself. With the impending removal of this feature, Instagram messages will revert to a standard format, making them technically accessible to Meta for content moderation and other internal purposes.
Implications for Users and Encrypted Chats
Users currently utilizing encrypted chats will receive in-app notifications that encourage them to download their messages and any shared media before the May 8 deadline. Meta has not clarified if encrypted chats will be permanently deleted after this cutoff date, leaving users who relied on the feature for sensitive communications in a state of uncertainty. Those using older versions of Instagram may also need to update their apps to access and export affected chats before they are removed.
The decision has sparked criticism from the security research community. Matthew Green, a cryptographer and professor at Johns Hopkins University, publicly condemned the move, suggesting it indicates a retreat from Meta’s earlier strong stance on encryption. Critics have noted the timing of this announcement coincides with increasing industry and legislative pressure regarding age verification and child safety laws, raising concerns about Meta’s broader commitment to user privacy.
Some researchers speculate that the removal of E2EE could allow Meta to implement content scanning capabilities or support AI training pipelines using message data. As users express their concerns, Meta has directed those seeking privacy to WhatsApp, where E2EE is enabled by default for all messages and calls. In contrast, WhatsApp’s encryption architecture has remained stable and is not affected by the current policy change. Additionally, Facebook Messenger still retains E2EE for personal one-on-one chats, although it is disabled for group and business communications.
Privacy Versus Oversight
The removal of E2EE from Instagram highlights the ongoing tension in the technology industry between user privacy and content oversight by platforms. This debate is unlikely to be resolved as regulatory pressures continue to mount globally. As privacy advocates raise their voices, the implications of Meta’s recent decision may resonate throughout the tech landscape, prompting further discussions around user rights and data protection.
For daily cybersecurity updates, follow us on Google News, LinkedIn, and X. Contact us to feature your stories.







































