Your Instagram Conversations Won’t Be so Private Anymore

Credit: Primakov/Shutterstock

Table of Contents

Before you send your next Instagram DM, be warned: Whatever you share with that friend, influencer, or business could potentially be seen by anyone—including but not limited to hackers, law enforcement, or even Meta itself. As of today, May 8, 2026, Instagram DMs are no longer end-to-end encrypted (E2EE). Your messages are vulnerable, whether you're discussing a reel you saw, or sharing your Social Security number. (Please don't do this.)

E2EE is necessary for any messaging service that wants to protect its users' privacy. This level of encryption ensures that the only people who can read the contents of a conversation are the ones with access to the devices involved. When you send a message over E2EE, the program encrypts, or "scrambles," it. Each device contains a "key" to decrypt, or "unscramble" the message. If you try to intercept the message without the key, all you'll see is a mess of code. Even Meta couldn't read your encrypted Instagram DMs in the past, which makes this change frustrating.

It's not clear why Meta is taking this drastic step. In fact, the company has yet to publicly announce it, despite the change going into effect today. Instead, back in March, Meta quietly updated an Instagram help page to note the new policy, writing "end-to-end encrypted messaging on Instagram will no longer be supported after May 8, 2026." Meta advised users to download chats that may be impacted, and that they might need to update Instagram to do so. Other than that, however, the company has been mute on the policy shift.

What's more, Instagram has spent the past seven years on a crusade to offer E2EE on all of its major messaging platforms. WhatsApp has always offered encrypted messaging, but the company also brought E2EE to Instagram and Facebook Messenger. There are critics of E2EE out there, including those who argue that the tech makes it more difficult to protect children on the platform. Meta has had a poor track record for how it handles underage users on its platforms, so perhaps it's feeling the pressure to change. But while it's true that ending E2EE means it's easier to track the conversations that minors are having on Instagram, it is now also easier to track anyone's chats. Governments and law enforcement will likely celebrate the change, but anyone who cares about user privacy will not.

Should you stop using Instagram DMs?

If you're a die-hard privacy fan, sure, you won't want to use Instagram for messaging any longer. (In fact, you may want to ditch Meta apps as much as possible.) But Instagram is far from the only insecure messaging platform out there. If you have an iPhone and text Android users (or vice versa), your texts are not encrypted (at least not until Apple starts supporting RCS E2EE with iOS 26.5); if you use Telegram without "Secret Chats," your messages are not E2EE; if you use Group Me, Discord, Google Chat, or any number of popular messaging apps, your conversations are not totally private.

That doesn't mean you need to stop using these apps, but you should understand the privacy and security implications. Without E2EE, your conversations are accessible by the company that hosts the app, and may be accessible by anyone who requests your data or seeks it by force. As such, don't rely on Instagram DMs for anything sensitive. Don't share details you wouldn't be comfortable discussing in public, or that you wouldn't want Instagram (or a hacker) to see. That could include financial information, corporate secrets, Social Security numbers, etc.

For now, it might be best to treat Instagram DMs as a place to discuss Instagram. "Here's a fun reel I found;" "look at this picture;" "have you seen this account?" For all serious conversations, turn to an E2EE app—perhaps one of Meta's, or something like iMessage or Signal.