Meta’s removal of end-to-end encryption from Instagram direct messages, confirmed for May 8, 2026, raises a series of urgent data questions that have not been answered. The change was disclosed through a quiet help page update. Users deserve clear answers about what happens to their message data now that it is accessible to Meta.
Question one: will Meta use DM content for advertising? The company has not made a public commitment that it will not use private message content to inform ad targeting. Without such a commitment, users have no assurance that their conversations will not shape the ads they see.
Question two: will Meta use DM content to train AI models? Meta’s investment in artificial intelligence is significant. Private message content is potentially valuable training data. The company has not committed to excluding DM content from its AI training pipelines.
Question three: how long will Meta retain DM data? Data retained by platforms creates long-term exposure. Users deserve to know how long their private messages will be stored and whether they have any right to have them deleted.
Law enforcement agencies including the FBI, Interpol, and national bodies in Australia and the UK had pushed for this change. Child safety advocates backed their position. Australia reportedly saw the feature deactivated before the global deadline.
Digital Rights Watch is demanding answers to these questions. Tom Sulston argued that users whose private conversations are now accessible to Meta have a right to know exactly how that data will be handled. He and others are calling on Meta to publish a comprehensive data use policy for Instagram DM content.