Instagram has switched off end-to-end encryption (E2EE) on direct messages, meaning the social media giant can now access all content of DMs. This decision by Meta, parent company of Instagram, comes after seven years of planning and represents a U-turn from their earlier stance that E2EE was the gold standard for user privacy.

The removal of E2EE has been welcomed by child protection groups but condemned by privacy advocates. Child charities argue it could put children at risk, while privacy campaigners fear Meta may be caving to government pressure and sacrificing users’ data security for AI training purposes.

Meta did not publicly announce its decision, quietly updating the app’s terms in March 2026. The move has implications beyond Instagram, reflecting a broader shift in tech companies' attitudes towards user privacy. While E2EE remains standard on many messaging apps like Signal and WhatsApp, this could slow its adoption across social media platforms.

The decision highlights the ongoing tension between data security for users and the commercial interests of tech giants. Will this move influence other platforms to follow suit or will it prompt a reevaluation of privacy practices?