Meta’s planned removal of end-to-end encryption from Instagram direct messages has already begun affecting users, with reports from Australia indicating the feature was deactivated there before the official May 8, 2026, deadline. The company confirmed the change through an update to its help page and a revised historical news post, rather than a formal public announcement. The early rollout in Australia suggests the global transition may be moving faster than the stated deadline implies.
The Australian Federal Police was among the law enforcement agencies that had pushed for this outcome, joining the FBI, Interpol, and the UK’s National Crime Agency in arguing that encrypted Instagram messages were obstructing criminal investigations. Australia’s eSafety Commissioner’s office acknowledged the complexity of the situation, noting that encryption serves a protective role for users but that platforms must also work to detect and prevent harm.
Meta’s company spokesperson attributed the removal to very low adoption of the opt-in encryption feature. The company says WhatsApp, which encrypts messages by default, remains available for users who require private communication. For Australian users who have already lost the feature, the timeline for the change has become irrelevant — the shift has already happened.
Digital rights advocates in Australia and internationally are raising concerns about what this means for vulnerable users — people who relied on encrypted Instagram DMs to communicate safely in contexts where their privacy is particularly important, such as journalists, activists, or individuals in sensitive personal situations. The removal of encryption, even from a limited opt-in feature, may have real consequences for these groups.
The broader pattern — a major platform quietly removing a key privacy feature, beginning with one national market before expanding globally — is one that digital rights organizations say demands regulatory attention. In Australia, the question of whether the eSafety Commissioner’s office has the authority to require platforms to maintain privacy features is likely to be raised in the coming weeks as the full scope of the change becomes clear.