The End of End-to-End Encryption on Instagram is Here

We will get to see Instagram ending end-to-end encrypted DMs before GTA 6

Starting May 8, 2026, Meta will no longer provide end-to-end encryption (E2EE) for Instagram messaging. The decision to stop supporting this encryption represents a major departure from how users were able to communicate privately using Instagram. This termination means that Meta will once again have access to all message content shared through Instagram, whereas before only the sender and intended recipient had albums of record for content shared through E2EE messaging.

Essential Steps for Impacted Users

Instagram has advised current users whose conversations are affected by this change via in-app notifications and updated materials on their help center around the necessity of downloading messages and/or media uploaded to the platform by May 8. Some users may need to upgrade their Instagram apps to enable them to download the content in time to meet the May 8 deadline.

Meta’s Justification: Low Adoption and Strategic Consolidation

As stated by Meta, the reasons behind this move are tied mainly to the lack of user activity. Meta spokespeople state that "very few users were participating in end-to-end encryption via DMs," and therefore the feature will be removed from Instagram over the next few months. Additionally, Dina El-Kassaby Luce, a spokesperson for Meta, clarified that anyone still desiring E2EE messaging can do so using WhatsApp, which is Meta's primary secure communication platform.

The discontinuation of support for E2EE messaging suggests that Meta is separating social channels from private chat; the primary function of Instagram is content discovery and sharing with the public while WhatsApp serves as the channel for conducting private messages via encryption. Experts contend that unlike WhatsApp where users automatically received encryption for every chat they conducted, Instagram required users to personally activate encryption per individual chat, leading to very limited adoption among users.

{getCard} $type={post} $title={You might like}

The Road to Reversal: A Historical Context

The choice to remove E2EE is in stark contrast to Mark Zuckerberg's 2019 "Privacy-Revolution Vision" incarnation, which was to develop encryption throughout Instagram's, Messenger's, and WhatsApp's apps. In 2021, Instagram DM's began testing for E2EE implementation. In February 2022, to aid in secure communication, Meta provided temporary E2EE access to all users over 18 years of age in both countries during the initial months of the Russian invasion of the Ukraine. Prior to that decision, internal emails from as far back as 2019 indicated that providing E2EE access would negatively impact the company's ability to find illegal activities.

The Safety vs. Privacy Debate

Law enforcement has been advocating to end encryption use as a method to combat child sexual exploitation and abuse for years, largely in response to child safety advocates and law enforcement recruiting around the world, such as the FBI, Interpol, and the UK’s National Crime Agency. By design, E2EE has created a safe environment for criminals and is a cause of the phenomenon of "Going Dark" (where technology platforms cannot comply with law enforcement’s request / warrants to provide evidence of child sexual exploitation, pornography, terrorism, and violent extremism).

A spokesperson for the Australian eSafety commissioner’s office commented on the complexity of the issue, “Where end-to-end encryption is implemented without appropriate safety measures, it can increase safety risks and prevent the identification of harms such as child sexual exploitation, and terrorism and violent extremism”. They added that while encryption is purely a business choice, it “does not remove a platform's responsibility to prevent harm”.

The announcement comes during an increased global discussion surrounding safety and digital rights: 

Law Enforcement and Safety groups have consistently condemned E2EE, suggesting it creates a "safe haven" for criminals, and is obstructing law enforcement efforts to investigate child sexual abuse material, terrorism and violent extremism. This phenomenon is sometimes referred to as "going dark" by law enforcement.

Privacy Advocates maintain that the weakening of encryption to issue such demands exposes very large numbers of users to surveillance, data breaches and hacking. In a recent Proton poll, 61% to 79% of survey respondents in France, Germany, the UK and US indicated that they consider E2EE to be "very important" or "somewhat important" in their decision-making process when selecting apps.

Experts also suggest some of these pressures may be commercial in nature. Removing E2EE provides Meta the ability to potentially analyze the content of private messages to write adverts and/or train AI models, with the result that Meta could provide its advertisers with more accurate targeting. Meta already disclosed its intention to leverage user interactions with its AI tools in private conversations to provide more targeted advertisements.

Legal and Regulatory Pressures

Meta’s retreat from encryption occurs amidst mounting legal challenges:

Nevada
The Attorney General filed a motion to ban Meta from offering E2EE to minors.

New Mexico
The Attorney General accused Meta of knowing that E2EE would make its platforms less safe by preventing the detection of exploitation.

United Kingdom
The government reportedly ordered Apple to allow backdoor access to iCloud data, signaling a broader regulatory threat to encryption.

European Union
The European Commission is preparing a Technology Roadmap to find ways for law enforcement to access encrypted data while supposedly safeguarding fundamental rights.

Broader Industry and Regulatory Context

Instagram is not alone in its stance. TikTok also stated in its announcement that it does not have plans to ever implement E2EE for its DMs and that this technology could make users "especially young people" less secure. In parallel, the European Commission is set to release in Q4 2025 a “Technology Roadmap” on encryption. The purpose of this roadmap is to find solutions to allow law enforcement access to data while maintaining the fundamental rights of citizens.

Commercial Implications and "Enshittification"

There are also proponents of privacy who believe that these decisions are based on commercial considerations rather than customer safety. Digital Rights Watch's Tom Sulston points out that the commercial incentives to utilize message content for targeted advertising and AI chatbot training are tremendous and ultimately inevitable. Sulston questioned the decision to remove E2EE from Instagram's DMs. "Why not enhance the product rather than continue to enshittify it."

Technical Reality After May 8

Once this policy is implemented, messages will still be encrypted during the transmission of messages to prevent hacking, but messages will no longer be E2EE; thus, Instagram will be able to monitor and scan all messages sent through the service for moderation, security, and advertising. While most users who have never enabled the feature will see little change to their day-to-day experience, users who care about their privacy will lose a very high level of security in their use of the platform.

{nextPage}

How will Meta handle existing encrypted chats after May 8?

After May 8, 2026, Meta will officially discontinue support for end-to-end encrypted messaging on Instagram. To handle the transition for users with existing encrypted chats, the company is implementing the following measures:

• In-App Notifications: Meta has already begun notifying impacted users through alerts inside the Instagram app and updates to its help pages.
• Data Download Option: Users are being provided with specific instructions on how to download any messages or shared media they wish to preserve from their encrypted conversations before the shutdown.
• Mandatory App Updates: For those using older versions of Instagram, Meta notes that users may need to update the app to a more current version before they are able to access and download these affected chats.
• Regained Visibility: Once E2EE support is removed, Meta will regain the technical ability to see and monitor the contents of all messages for moderation, security, and potentially commercial purposes.
• Transition to Standard Encryption: While the "gold standard" of E2EE, where only the sender and recipient can read the data, will be gone. Messages will still be encrypted during transmission to prevent external interception by hackers.
• Redirection to WhatsApp: Meta suggests that any users who wish to continue using end-to-end encryption for their private conversations should move those chats to WhatsApp, which will remain encrypted by default.

In most instances, this recent change will be virtually undetectable for users, as E2EE was not automatically engaged on IG and needed to be enabled manually on per conversation threads. However, those users who did enable that feature will no longer have the same level of protection from authorized access via IG.

Why did Meta keep encryption on WhatsApp but not Instagram?

Meta’s decision to maintain end-to-end encryption (E2EE) on WhatsApp while removing it from Instagram is driven by a combination of low user adoption, strategic platform segregation, and regulatory pressure regarding online safety. {alertInfo}

The primary reasons for this discrepancy include:

Low Adoption on Instagram vs. Default on WhatsApp

A Meta spokesperson stated that "very few people" were opting into E2EE on Instagram. Unlike WhatsApp, where E2EE is the default setting for all messages, Instagram required users to manually activate the feature for specific chats. This design choice resulted in limited uptake, making the technical complexity of maintaining the feature on Instagram difficult for Meta to justify.

Segregating "Social Media" from "Private Chat"

Experts suggest Meta is pivoting toward a strategy that distinguishes between its platforms based on their primary function. WhatsApp is designated as the flagship platform for private, secure communication between people who already know each other. Conversely, Instagram is treated primarily as a social media and content-sharing platform focused on discovery. By removing E2EE on Instagram, Meta can keep its messaging system more accessible to moderation tools while pointing privacy-conscious users toward WhatsApp.

Safety and Regulatory Oversight

Law enforcement and child safety groups have long criticized E2EE for creating "blind spots" that prevent platforms from detecting illegal content, such as child sexual abuse material (CSAM) or terrorist propaganda. While WhatsApp remains encrypted, removing E2EE on Instagram allows Meta to regain the ability to monitor and scan message content for moderation and security purposes. This move addresses intense pressure from global regulators who argue that E2EE makes platforms less safe.

Commercial Pressures

Some advocates argue that removing E2EE on Instagram serves Meta's business interests. Without encryption, Meta has the potential to analyze message contents to determine advertising and train AI chatbots. While the company may not be doing this universally yet, the commercial pressure to monetize private data is considered "huge" by policy experts.

At the end of the day, Meta’s approach seems to be one of integrating E2EE into the product where it is a main (and expected) feature (WhatsApp), while still holding more authority over the safety and security mechanisms on their social media network (Instagram). {alertInfo}