Meta Platforms will stop offering end-to-end encryption in Instagram direct messages in early May, a decision that coincides with a moment of growing distrust over how large messaging and social media platforms manage data.
The move also comes as WhatsApp faces a class-action lawsuit for allegedly collecting and storing message content despite presenting its system as end-to-end encrypted. The contradiction affects the core of a service that millions of users rely on for private conversations, while migration in the United States and Europe towards applications that promise more privacy and less commercial exploitation of data grows.
Instagram withdraws protection while WhatsApp faces lawsuit over its messages
CyberSafe warns that the removal of this mechanism in Instagram could expose users to data leaks, information theft, and an increase in online fraud. The risk is not limited to reading messages, as it also extends to photos, audio, and other files shared within private conversations.
The exposure of this material opens the door to criminal uses such as identity theft, the creation of deepfakes, or forms of psychological manipulation supported by real content stolen from accounts. In parallel, the expansion of cloud backups shifts the privacy debate to another area, that of control over how that data is stored and exploited.
In this context, public criticism of WhatsApp has also increased. Elon Musk asked on X if the app collects data on user behavior, and Pavel Durov, CEO of Telegram, even called WhatsApp's commitment to encryption "the lie of the century."
Usage data gains weight in ad-funded applications
The problem is not limited to message content. Security experts indicate that a large portion of users are unaware that many applications collect behavioral data that is not directly visible, such as device type, connection times, or frequency of use.
That trace is especially valuable on platforms whose revenue model depends on advertising, because it allows segmenting ads based on habits and activity patterns. In the privacy debate, the focus is no longer just on who can read a message, but on how the behavioral data left by users when using these services are stored, shared, and used.
The reaction is already noticeable in part of the market. In the United States and Europe, more users are opting for messaging applications that prioritize privacy, limit advertising, and offer greater transparency regarding the processing of personal information.
Given this scenario, specialists recommend separating uses and tools. They propose distinguishing between social networks intended for entertainment and messaging applications reserved for sensitive conversations or files, in addition to reviewing what data each service stores and under what conditions it shares it.
The Personal Data Protection Law will come into effect in early 2026 with a legal framework aimed at strengthening user protection in the digital space.