Pavel Durov, the founder of the popular messaging platform Telegram, has sparked a significant debate regarding digital privacy by labeling WhatsApp's claims of default end-to-end encryption (E2EE) as a "serious deception." In a detailed statement shared on April 13, 2026, Durov highlighted systemic vulnerabilities in how user data is handled by competitors, emphasizing that the security of private communications is often compromised by external cloud backups and third-party data requests.
The Vulnerability of Cloud Backups and Plain Text Data
According to Durov, approximately 95% of private messages on WhatsApp are eventually stored in plain text on servers managed by tech giants Apple and Google. While WhatsApp promotes its E2EE protocols, the Telegram founder argues that the reliance on cloud-based backups effectively nullifies these protections. He noted that backup encryption is an optional feature that is rarely activated by the average user, and an even smaller percentage of the user base utilizes robust password protection for these archives.
Durov further explained that even if a security-conscious user encrypts their own backups with a strong password, the integrity of the conversation remains at risk. He asserted that:
Even if backup is encrypted with a strong password, messages will still appear in unencrypted cloud backups because over 90% of chat partners have not made the same settings.
Data Disclosure and Platform Security Standards
The critique extended to the transparency of data sharing with government agencies and third-party entities. Durov claimed that Apple and Google disclose WhatsApp backup messages to third parties thousands of times annually. In contrast, he highlighted Telegram's historical record, stating that the platform has never disclosed user message content to third parties in its more than 12-year history. This comparison underscores the differing architectural approaches between decentralized messaging services and those integrated into the broader Big Tech ecosystem.
- Reliance on unencrypted cloud storage bypasses standard E2EE protections.
- Lack of synchronized security settings between chat participants creates data leaks.
- High frequency of data disclosure by infrastructure providers like Apple and Google.
As the digital asset community increasingly prioritizes privacy and the use of decentralized technologies, the debate over encryption standards becomes vital. The integration of blockchain technology and cryptographic principles into communication tools continues to evolve, yet Durov's comments serve as a reminder that user behavior and default platform settings remain critical factors in maintaining true data sovereignty.
Frequently Asked Questions
Quick answers to the most common questions about this topic.
For educational purposes only. Nothing here constitutes financial or investment advice. Crypto markets are highly volatile — always DYOR before making any decisions.
Fact-checked per our editorial policy. We maintain strict independence from advertisers. Spot an error? Let us know.