Meta’s handling of the announcement that end-to-end encryption would be removed from Instagram direct messages offers a masterclass in how large corporations manage unwelcome news. The change, effective May 8, 2026, was buried in a help page update. The low-profile disclosure minimized immediate public reaction while ensuring the company met its technical disclosure obligations.
Encryption on Instagram was introduced in 2023 as an opt-in feature following Zuckerberg’s 2019 commitment. Meta’s announcement of its removal was similarly understated. By updating a help page and revising an old news post rather than issuing a press release, the company ensured minimal attention to a significant privacy change.
After May 8, all Instagram DMs will be accessible to Meta. The full implications of this change are only now being understood by the public. Many users remain unaware that the feature existed, let alone that it is being removed.
Law enforcement agencies including the FBI, Interpol, and national bodies in Australia and the UK had advocated for this change. Child safety advocates backed their position. Australia reportedly saw the feature deactivated before the official global cutoff.
Privacy advocates are calling out the communications strategy as deliberately obscure. Digital Rights Watch argued that users deserved direct, prominent notification of a change to their privacy settings. Tom Sulston described the approach as consistent with a pattern of treating user rights as a communications problem to be managed rather than a value to be upheld.