More
    WhatsApp privacy features

    WhatsApp privacy features

    88
    Business
    By Editor & Publisher

    WhatsApp offers a robust set of privacy features designed to give users control over their data, conversations, and visibility. These include core protections like end-to-end encryption, as well as customizable settings for chats, profiles, and more. Many features have been updated or introduced in 2025 for enhanced security, such as passkey authentication and advanced controls. Below is a comprehensive overview, grouped by category for clarity. You can access most of these in WhatsApp Settings > Privacy or Account.

    Core Encryption and Data Protection

    • End-to-End Encryption: All messages, calls, media, status updates, and location sharing are encrypted so only the sender and recipient can access them—WhatsApp itself cannot view the content. This applies to one-on-one chats, groups, and calls, using the Signal Protocol for security.
    • End-to-End Encrypted Backups: Secure your chat history and media in cloud backups (e.g., Google Drive or iCloud) with a password or 64-digit key, preventing unauthorized access even if the cloud is compromised. Enable via Settings > Chats > Chat Backup > End-to-End Encrypted Backup.
    • Protect IP Address in Calls: Hide your IP address during calls by routing through WhatsApp servers (may impact call quality). Toggle in Settings > Privacy > Advanced.
    • On-Device AI Processing: Processes AI features (like Meta AI) locally on your device to keep data private and comply with regulations (2025 update).
    • AI Data Protection: Limits AI from using messages in protected chats and blocks mentions like “@Meta AI” (2025 update).

    Account Security

    • Two-Step Verification: Add a six-digit PIN (with optional email recovery) to prevent unauthorized access, even if your SIM is swapped. Enable via Settings > Account > Two-Step Verification.
    • Passkey Authentication: Use device biometrics (e.g., fingerprint or Face ID) for passwordless logins, replacing traditional PINs for faster, phishing-resistant security (2025 update).
    • Email Address Linking: Link an email to recover your account if you lose phone access. Set in Settings > Account > Email address.
    • Linked Devices Audit: Review and log out suspicious devices connected to your account. Access via Settings > Linked Devices.
    • Multi-Device Privacy Control: Get alerts for new device logins and set time limits or approvals.
    • App Lock: Lock the entire app with biometrics or PIN after inactivity. Enable in Settings > Privacy > App lock.
    • Security Notifications: Alerts you if a chat’s security code changes, indicating potential issues. Enable in Settings > Account > Security notifications.
    • Security Code Verification: View a unique code per chat to confirm encryption integrity. Tap contact profile > Encryption.

    Chat and Media Privacy

    • Chat Lock: Hide and lock specific chats in a separate folder using biometrics or PIN; they won’t show in notifications or the main list (2025 update). Enable via chat profile > Lock chat, or manage in Settings > Privacy > Chat lock.
    • Hidden Chats: Lock entire chat folders with biometrics; auto-locks after inactivity and requires a secret gesture to access (includes stealth mode for notifications; 2025 feature).
    • Disappearing Messages: Set messages to auto-delete after a timer (e.g., 24 hours, 7 days, 90 days) in chats or as default for new ones. Enable via chat profile > Disappearing messages or Settings > Privacy > Default message timer.
    • View Once Media: Send photos, videos, or voice messages that can be viewed only once before disappearing; can’t be saved or forwarded. Tap the “1” icon when sending.
    • Self-Destructing Media 2.0: Enhanced version allowing media to disappear after a set timer (2025 update).
    • Advanced Chat Privacy: Prevent exporting chats, sharing content, auto-downloading media, or forwarding messages in specific chats or groups. Enable via chat settings > Advanced Chat Privacy.
    • Chat Export Blocking: Block exporting chat history or files for all members in a chat (2025 feature).
    • Media Download Controls: Disable automatic saving of photos/videos/files to reduce risks (2025 feature).
    • Screenshot & Screen Recording Block: Prevent captures in specific conversations (2025 feature).
    • Transfer Chats: Move chats to a new device without cloud backups for secure migration. Via Settings > Chats > Transfer chats.

    Visibility and Contact Controls

    • Last Seen & Online Visibility: Control who sees when you’re online or last active (e.g., Nobody, My Contacts Except…). Set in Settings > Privacy > Last Seen and online.
    • Profile Photo Visibility: Limit who can see your photo (e.g., My Contacts Except…). Set in Settings > Privacy > Profile photo.
    • About Visibility: Control who sees your “About” info. Set in Settings > Privacy > About.
    • Read Receipts: Disable blue ticks to hide when you’ve read messages (bidirectional; doesn’t affect groups). Toggle in Settings > Privacy > Read receipts.
    • Status Visibility: Choose who sees your status updates (e.g., My Contacts Except…). Set in Settings > Privacy > Status.
    • Group and Community Privacy: Control who can add you to groups (e.g., My Contacts Except…); hide phone number from non-contacts in groups/communities. Set in Settings > Privacy > Groups.
    • Silent Group Exit: Leave groups without notifying everyone (only admins are alerted; 2025 feature).
    • Silence Unknown Callers: Mute calls from unsaved numbers; they appear in logs but don’t ring. Toggle in Settings > Privacy > Calls > Silence unknown callers.
    • Block Unknown Account Messages: Auto-block excessive messages from unknown accounts (2025 advanced setting).
    • Blocking and Reporting: Easily block/report contacts or messages; includes options for unknown senders.
    • Contact Syncing Control: Toggle off syncing to separate work/personal contacts.
    • Link Previews Off: Disable automatic previews for shared links to enhance privacy.

    Additional Tools

    • Privacy Checkup: A quick review tool to adjust settings like blocked contacts and visibility. Access via Settings > Privacy > Privacy checkup.
    • Privacy Dashboard: View which apps/contacts accessed your info and tweak settings (2025 feature).
    • Live Location Sharing Management: Review and stop ongoing location shares. In Settings > Privacy > Live location.
    • Request Account Info: Download a copy of your data or delete your account. Via Settings > Account > Request account info or Delete my account.
    • Change Number: Update your phone number, which migrates associated data. In Settings > Account > Change number.

    For the latest details, check WhatsApp’s in-app settings or official help center, as features can evolve. If you need steps for a specific feature, let me know!

    Explain passkey authentication

    Thought for 17s

    Passkey authentication is a modern, passwordless method of verifying a user’s identity when signing into apps, websites, or services. It’s based on standards developed by the FIDO (Fast IDentity Online) Alliance, in collaboration with companies like Google, Apple, and Microsoft, to replace traditional passwords with something more secure and user-friendly. Instead of typing in a username and password (which can be guessed, stolen, or phished), passkeys rely on cryptographic keys tied to your device, authenticated via biometrics like fingerprint or face recognition, or a simple device PIN or pattern.

    How Passkeys Work

    Passkeys operate using public-key cryptography, a system that’s been around for decades but is now simplified for everyday use. Here’s a step-by-step breakdown:

    1. Creation: When you set up a passkey for an account (e.g., on a website or app like WhatsApp), your device generates a pair of cryptographic keys:
      • A public key is shared with and stored by the service (e.g., the app’s server). This isn’t secret and doesn’t need protection.
      • A private key stays securely on your device—it’s never transmitted or shared. The private key is protected by your device’s built-in security, such as its secure enclave or hardware module.
    2. Authentication (Signing In): To log in, the service sends a challenge to your device. Your device uses the private key to “sign” (encrypt) a response to this challenge, proving you have the matching key without ever sending the key itself. You authorize this by unlocking your device—typically with biometrics (e.g., Face ID or fingerprint) or a PIN. No username or password is needed; the system often auto-fills or prompts based on saved accounts.
    3. Syncing Across Devices: Passkeys can sync securely between your devices using cloud services like Apple’s iCloud Keychain (end-to-end encrypted) or Google’s Password Manager. This means if you create a passkey on your phone, it can be available on your laptop without manual setup. However, you might need to create or approve it per device in some cases.

    Passkeys are “discoverable,” meaning they include user info (like an ID) so you don’t even need to enter an email or username—the app can detect and suggest the right one. They’re compatible across platforms, so a passkey created on an Android device can work on iOS or Windows, as long as the browser or app supports it (e.g., Chrome 109+, Safari 16+, Edge 109+).

    Benefits Over Traditional Passwords

    • Security: Passkeys are highly resistant to phishing because the private key never leaves your device—hackers can’t trick you into revealing it. They’re also immune to common attacks like credential stuffing (reusing stolen passwords from data breaches). Biometric data (if used) stays local and isn’t shared with services.
    • Convenience: No more memorizing or typing complex passwords. Sign-ins are faster, often bypassing two-factor authentication (2FA) like SMS codes, since the passkey itself proves possession of the device.
    • Fallback Options: If passkeys aren’t available (e.g., on an unsupported device), you can usually revert to passwords or other methods. Account recovery might involve email, phone, or security questions.

    Limitations and Considerations

    While passkeys are gaining adoption (e.g., in Google Accounts, Microsoft services, WhatsApp, and many websites), not every app or site supports them yet. If you lose all synced devices, recovery can be tricky, so it’s wise to add backup factors like email or phone numbers. They’re best for personal use but can extend to enterprise scenarios with tools like hardware security keys.

    In the context of apps like WhatsApp, passkeys enable quick, secure logins without PINs, enhancing privacy by reducing reliance on less secure methods. If you’re setting one up, look for options in your account settings or during login prompts.

    Related videos

    Related videos

    © Business to Mark – Latest Business & Tech News