Meta’s removal of end-to-end encryption from Instagram direct messages, effective May 8, 2026, is a significant moment in the ongoing story of digital privacy. The change was disclosed through a quiet help page update. But while the feature is gone, the story it represents is far from over.
Encryption on Instagram was introduced in 2023 as an opt-in feature following Zuckerberg’s 2019 commitment. Its removal reflects the outcome of years of competing pressures — from law enforcement, from child safety advocates, from commercial interests, and from strategic platform positioning. The feature became a battleground for all of these forces.
After May 8, Meta will have full access to all Instagram DMs. The immediate story is of a privacy feature lost. But the broader story is of what comes next: how Meta uses the data it now has access to, how regulators respond, and whether the advocacy community can build a stronger case for encryption as a standard right.
Law enforcement agencies including the FBI, Interpol, and national bodies in Australia and the UK had achieved their goal. Child safety advocates had won an important victory. Australia reportedly saw the feature deactivated before the global deadline.
Digital Rights Watch and others are clear that the story continues. Tom Sulston argued that the removal of Instagram’s encryption is a chapter, not a conclusion. He and the broader privacy community are committed to writing the next chapter — one in which encryption is treated as a fundamental right, not a feature that can be quietly removed when it becomes inconvenient.