VYPR
advisoryPublished May 11, 2026· Updated May 17, 2026· 1 source

Meta Removes End-to-End Encryption from Instagram Direct Messages

Meta has officially removed end-to-end encryption for Instagram direct messages, granting the company the ability to access user content and sparking backlash from privacy advocates.

Meta has officially discontinued end-to-end encryption (E2EE) for direct messages on Instagram, a feature that had been available as an optional setting since 2023. The removal, which took effect on May 8, 2026, means that Instagram now has the technical capability to access the content of direct messages, including images, videos, and voice notes Help Net Security.

The company justified the decision by citing low adoption rates among its user base, noting that only a small percentage of Instagram users had actively enabled the encryption feature. In response to the change, Meta has advised users who prioritize encrypted communication to migrate to WhatsApp, where end-to-end encryption remains enabled by default Help Net Security.

For users with existing encrypted chats, Meta has provided instructions on how to download media and message history. However, the company has not clarified the fate of encrypted conversations that are not manually downloaded by the user. It remains uncertain whether these messages will be deleted, decrypted and stored on Meta’s servers, or rendered permanently inaccessible Help Net Security.

The move has drawn sharp criticism from privacy advocates. The Steering Committee of the Global Encryption Coalition, which includes organizations such as Mozilla and the Center for Democracy & Technology, issued a statement in April arguing that low adoption of an opt-in feature should be viewed as a failure of implementation rather than a justification for removal. The coalition contends that encryption is a fundamental requirement for safety and human rights, and that it should be the default standard rather than an optional setting Help Net Security.

Industry observers have raised concerns regarding the implications of this policy shift. Edward Komenda, Editor at Proton, noted that the removal of E2EE creates significant uncertainty regarding how private data will be handled. There are growing questions about whether sensitive information, such as personal photos, could now be analyzed for advertising purposes, utilized for AI training, or potentially shared with third-party entities Help Net Security.

This decision marks a notable reversal in Meta’s privacy roadmap for Instagram. While the company continues to maintain E2EE on its other platforms, the removal of the feature on Instagram highlights the ongoing tension between platform-wide data accessibility and user privacy expectations. As Meta shifts its focus toward AI-driven features and integrated advertising, the industry will be watching to see how this change impacts user trust and whether other platforms follow suit in prioritizing data access over end-to-end security.

Synthesized by Vypr AI