WhatsApp Class Action Lawsuit, Did Meta and Accenture Read Your Private Messages?

Two WhatsApp users have filed a proposed class action lawsuit in California federal court against Meta Platforms, WhatsApp, and consulting giant Accenture, claiming the companies secretly allowed employees and outside contractors to read, store, and access private messages that WhatsApp promised were protected by end-to-end encryption. The lawsuit was filed on March 27, 2026. No settlement exists, no claim form is available, and the case is in its earliest stages. But if you use WhatsApp, here is everything you need to understand about what is alleged and what it could mean for you.

Quick Facts

Field	Detail
Case Name	Shirazi, et al. v. Meta Platforms Inc., et al.
Case Number	3:26-cv-02615
Court	U.S. District Court, Northern District of California
Filed	March 27, 2026
Plaintiffs	Brian Y. Shirazi and Nida Samson
Defendants	Meta Platforms Inc., WhatsApp LLC, Accenture PLC, Accenture LLP
Settlement	None — active litigation phase
Claim Form Available	No
Who May Be Affected	WhatsApp users in the United States
Plaintiff’s Attorneys	Kessler Topaz Meltzer & Check LLP

Where This Case Stands Right Now

• Plaintiffs Brian Y. Shirazi and Nida Samson filed the class action lawsuit in California federal court, claiming the defendants wrongfully intercepted and shared private WhatsApp messages with third parties.
• The case is in its earliest stages. Meta has not yet filed a formal response in this specific lawsuit, and no class certification hearing has been scheduled.
• No settlement has been reached, no settlement administrator has been appointed, and no claim form exists. No action is required from WhatsApp users at this time.

What the Lawsuit Alleges

WhatsApp markets itself with a single, clear promise: your messages are end-to-end encrypted, meaning only you and the person you are messaging can read them. The app displays this assurance to users directly — “not even WhatsApp” can see what you send.

The 52-page lawsuit contends that despite those promises, Meta employees, Irish consulting and tech firm Accenture, and possibly other third parties can access users’ messages via a backdoor in the WhatsApp source code. The filing stresses that neither Meta nor WhatsApp asks users for consent to have their private messages intercepted, read, stored, accessed, or viewed by outside parties.

The lawsuit cites recent whistleblower accounts to federal investigators reporting that employees of Meta, WhatsApp, and third-party contractors were able to access users’ messages despite what the company represented. Those whistleblower accounts have prompted a special investigation by special agents with the U.S. Department of Commerce.

The complaint zeroes in specifically on the role of Accenture. The suit states that contractors “understood that certain WhatsApp/Meta employees had backdoor access to all WhatsApp user messages,” from which they pulled messages to provide to outside investigators in criminal cases and to Accenture reviewers checking for policy violations. Once a user message was flagged for potential fraud, the complaint alleges, days of that user’s messages would be sent through a portal and reviewed — with usernames, profile information, and the full content of messages visible to reviewers.

The complaint mentions that sometime in 2021 or 2022, WhatsApp enlisted hundreds of Accenture reviewers in the United States and worldwide to review and moderate the content of purportedly encrypted messages.

What Laws the Plaintiffs Say Were Broken

Shirazi and Samson claim the companies are guilty of breach of contract and violations of California privacy laws, fraud and data laws, false advertising law, and unfair competition, as well as the Pennsylvania Wiretapping and Electronic Surveillance Act and the common law doctrine of intrusion upon seclusion.

In plain terms, the lawsuit argues that Meta made a binding promise — your messages are private — and then broke it without ever telling users or asking for their agreement to be read.

Related article: How to Claim Your Payout from the $135M Google Android Data Settlement Payment Before the May 9, 2026

The Encryption Debate: What Both Sides Say

Meta has not stayed quiet. Meta spokesperson Andy Stone dismissed the lawsuit as “frivolous” and “absurd,” emphasizing that WhatsApp has maintained end-to-end encryption using the Signal protocol for over a decade. Stone stated that any claims to the contrary are “categorically false” and that Meta intends to seek legal sanctions against the plaintiffs’ counsel.

Independent cryptographers have weighed in with a more measured view. Johns Hopkins cryptography professor Matthew Green noted that if Meta were accessing messages through a backdoor, the evidence would almost certainly be visible in WhatsApp’s application code, and it would expose WhatsApp and Meta to severe consequences. Green acknowledged that he cannot definitively rule it out, but argued that getting caught would be virtually inevitable.

While the Signal protocol that WhatsApp integrated is open-source, the way it has been integrated is not available to the public, meaning independent parties cannot confirm the system functions without any backdoor. As the lawsuit itself puts it, the public can only take the word of Meta and WhatsApp that they do not have access to the substance of user communications.

This is the core tension at the heart of the case: the absence of transparency does not prove wrongdoing, but it also means users cannot independently verify the privacy promises they rely on every day.

How This Case Fits Into a Bigger Picture

This is not the only WhatsApp-related privacy lawsuit making its way through the courts in 2026. A separate international class action — Dawson et al. v. Meta Platforms, Inc. et al. — was filed in the U.S. District Court for the Northern District of California around January 23–25, 2026. That case involves named plaintiffs from Australia, Brazil, India, Mexico, and South Africa and alleges Meta can access “virtually all” WhatsApp user communications.

The January 2026 lawsuit covers most WhatsApp users worldwide but excludes those in the US and Canada because of arbitration clauses in WhatsApp’s terms of service, while UK and European users are excluded as they must raise claims in their own countries or Ireland. The newly filed Shirazi case, by contrast, targets U.S.-based users directly and brings specific California and Pennsylvania wiretapping claims.

These lawsuits follow a broader pattern of social engineering and privacy concerns in the fintech and tech space — and sit alongside growing regulatory pressure on Meta worldwide over how it handles user data across its platforms. For a full picture of how WhatsApp’s earlier privacy litigation against spyware vendor NSO Group concluded, see AllAboutLawyer.com’s detailed breakdown of the WhatsApp class action and NSO spyware settlement.

Who May Eventually Be Affected

No class has been certified yet, so the precise boundaries of who qualifies are still undefined. Based on the complaint as filed:

• You may eventually be affected if you are a WhatsApp user based in the United States.
• You may eventually be affected if you sent messages on WhatsApp at any point and believed those messages were protected by end-to-end encryption.
• You may eventually be affected if you were not given the opportunity to consent to having your messages accessed, read, or stored by Meta employees, Accenture contractors, or other third parties.

No action is required from anyone right now. If and when the court certifies a class and a settlement is reached, affected users will receive official notice with instructions.

Frequently Asked Questions

Do I need a lawyer to participate in this lawsuit?

 Not at this stage. The case is still in active litigation and no claims process exists. If the court eventually certifies a class and a settlement is reached, class members typically receive automatic notice and can file claims without hiring their own attorney.

Is this lawsuit legitimate? 

Yes. The case — Shirazi, et al. v. Meta Platforms Inc., et al., Case No. 3:26-cv-02615 — is a real federal lawsuit filed in the U.S. District Court for the Northern District of California and reported by Law360 on March 27, 2026. The plaintiff attorneys are from Kessler Topaz Meltzer & Check LLP, a nationally recognized firm.

When will I receive a payment? 

There is no payment timeline to share yet. The case must survive Meta’s expected motion to dismiss, proceed through discovery, and reach class certification before any settlement negotiations can begin. Privacy class actions of this scale typically take several years to resolve.

What if I missed a deadline?

 There are no deadlines for consumers to act at this time. This is a litigation-phase case with no active claims window.

Will any settlement payment affect my taxes? 

Potentially. Compensation for statutory privacy violations may be treated as taxable income depending on the nature and amount of the award. Consult a tax professional once any settlement is announced.

What is end-to-end encryption, and why does it matter here? 

End-to-end encryption means a message gets scrambled on your device before it travels across the internet, and only the recipient’s device can unscramble it. In theory, no one in between — not hackers, not governments, and not even WhatsApp — can read it. The lawsuit challenges whether WhatsApp’s implementation actually delivers that promise, or whether a backdoor allows internal access despite the encryption.

What is Accenture’s role in this lawsuit?

 Accenture is an Irish consulting and technology firm named as a defendant in the lawsuit. The complaint alleges that Accenture reviewers were enlisted by WhatsApp to review and moderate the content of purportedly encrypted messages, with access provided through what the lawsuit describes as a backdoor in the WhatsApp source code.

Should I stop using WhatsApp?

 That is a personal decision. Meta firmly denies all allegations, and no court has made any finding against the company. Independent experts have noted that proving backdoor access would be technically difficult to hide. If you have strong privacy needs, security researchers often recommend fully open-source alternatives like Signal, which publishes its entire codebase for public inspection.

Last Updated: April 8, 2026

Disclaimer: This article is for informational purposes only and does not constitute legal advice. Legal claims and outcomes depend on specific facts and applicable law. For advice regarding a particular situation, consult a qualified attorney.