Need honest help understanding Telegram app reviews

Apps
1

I’ve been seeing very mixed reviews about the Telegram app—some people say it’s great for privacy and features, while others warn about security risks and spam. I’m confused about what’s actually true and whether it’s safe and reliable enough to use daily for personal and work chats. Can anyone with real experience explain the pros, cons, and what settings or precautions I should use to stay safe on Telegram?

2

Short version. Telegram is useful, not magic. Good in some areas, weak in others. Depends what you need.

Here is the stuff that causes all the mixed reviews.

  1. Privacy vs security
    • Chats are NOT end‑to‑end encrypted by default.
    • Normal chats go through Telegram’s servers. They are encrypted on the way, but Telegram can access the content on their side.
    • Only “Secret Chats” are end‑to‑end encrypted. You need to start them manually with each person.
    • Group chats and channels do not support end‑to‑end encryption at all.
    • If you want strong privacy, you must:

    • Use Secret Chats for 1‑to‑1 sensitive stuff
    • Turn on “2‑step verification” in Settings
    • Turn on auto‑delete timers if you care about message history staying short

  2. Account security
    • Telegram uses your phone number as your account ID.
    • Weak spot is SIM swap attacks or someone reading your SMS codes.
    • Fix it:

    • Enable 2‑step verification with a strong password
    • Add a recovery email so you do not lose access
    • Never share login codes with anyone in DMs, even if they say they are “support”

  3. Spam and scams
    • Telegram has a lot of spam.
    • Spammers love it because you can create huge channels and groups. Also the moderation is lighter than WhatsApp or iMessage.
    • Common issues:

    • Random “investment” groups
    • Fake airdrops and crypto giveaways
    • Fake “support” accounts that message you after you post in big groups
      • What to do:
    • Settings → Privacy and Security → turn off “Everybody” for “Who can add me to groups”
    • Block and report any random dms asking for codes, money, or “help with verification”
    • Avoid clicking random links from unknown users

  4. Data collection
    Telegram says it stores minimal data. They keep contacts, your cloud chats, and metadata like who you talk to and when.
    They do not do “end to end everything” like Signal.
    If you want the highest privacy standard, Signal is better.
    If you want a feature rich app with cloud storage, Telegram is more flexible.

  5. Features people like
    • Huge groups and channels, often over 100k people.
    • Cloud backup of all regular chats that sync across devices.
    • Bots, custom clients, good desktop app.
    • File sharing up to large sizes, nice for sending videos, zips, etc.
    • Many users use it for hobbies, news, niche communities.

  6. Why some people hate it
    • Source code on server side is closed. People cannot fully verify how servers work.
    • Default non‑encrypted group chats make security researchers annoyed.
    • Spam and scams are common in public spaces.
    • Some use it for shady stuff, so it has that reputation.

  7. When it is “safe enough”
    Reasonable use cases:
    • Casual chatting where you do not care if Telegram can read messages.
    • Hobby groups, tech groups, uni groups, etc.
    • Sharing files with friends.
    • Using Secret Chats for private 1‑to‑1 conversations.

    Not great for:
    • Activists, journalists in high risk countries, whistleblowers.
    • Anything that would harm you if a government or Telegram gained access.
    In those cases, use Signal or something focused on strong encryption by default.

  8. Practical setup if you decide to use it
    • Turn on:

    • Settings → Privacy and Security → 2‑Step Verification
    • Auto‑delete in sensitive chats if needed
      • Tighten privacy:
    • Hide phone number from everyone or from strangers
    • Restrict “Who can add me to groups and channels”
      • Treat public groups like a public forum. Do not share real name, address, or financial info.

So the “Telegram is great for privacy” reviews mean: better than SMS, with options for strong privacy if you configure it.
The “Telegram is unsafe” reviews mean: defaults are weak compared to apps that encrypt everything by design and the spam problem is real.

If you want a simple answer.
For casual day to day use with some privacy settings tweaked, Telegram is fine.
For anything sensitive, use Secret Chats or a different app.

3

Short version: both sides of the reviews are kinda right, and Telegram leans more “convenient messenger” than “serious privacy tool.”

@viajeroceleste already nailed most of the practical setup stuff, so I won’t rehash the same step‑by‑step.

Here’s what I’d add / where I slightly disagree:

  1. The “privacy app” reputation is overblown
    A lot of people treat Telegram like it’s Signal with stickers. It’s not.

    • Normal chats: Telegram can theoretically read them.
    • Secret Chats: good encryption, but only 1‑to‑1 and device‑specific.
      So if your bar is “no one, including the company, can read my stuff,” Telegram fails by default. The marketing vibe makes people overtrust it.

  2. Group use is Telegram’s biggest strength and weakness

    • Strength: big communities, channels, files, bots.
    • Weakness: no end‑to‑end in groups, and tons of spam & scams.
      Where I slightly disagree with @viajeroceleste: I don’t think tweaking a couple privacy settings magically makes spam “manageable” if you hang in large public groups. You have to accept it’s like an open forum with a chat UI, not a clean friends‑only messenger.

  3. Threat model matters more than app choice
    If your “risk level” is:

    • “I don’t want my ex or coworkers reading my phone”: Telegram with a passcode + 2‑step is fine.
    • “I’m worried about a random hacker or spammer”: also fine, if you ignore suspicious DMs and never share codes.
    • “I’m worried about my government, or I’m an activist/journalist”: I would not rely on Telegram at all, even with Secret Chats. Use Signal / Session / real opsec.

  4. The closed server code is a legit concern
    Security folks complain for a reason. You can’t fully audit Telegram’s backend. That doesn’t mean it’s evil, just that you’re taking their word for how they handle keys, logs, and legal requests.
    If you’re the kind of person reading privacy policies for fun, this alone might be a dealbreaker.

  5. What I personally use Telegram for

    • Tech / hobby groups where I don’t share anything sensitive.
    • Sharing large files with friends.
    • Throwaway chats with acquaintances where I don’t care if it lives on a server.
      I do not use it for: financial stuff, real‑name private drama, or anything that would ruin my life if leaked.

  6. Simple sanity check for you
    Ask yourself:

    • “Would I be ok if Telegram staff theoretically could read this?”
      • If yes, normal chats / groups are fine.
    • “Would I be ok if my government demanded this data?”
      • If no, then Telegram is not your main app, period.
    • “Do I hate dealing with scam messages?”
      • Expect some annoyance if you join big public groups.

So:

  • Safe enough for casual, social, everyday chatting if you treat it like semi‑public and harden basic settings.
  • Not a true privacy fortress, and absolutely not the ideal choice for sensitive or high‑risk stuff, no matter what the fanboys say.
4

Telegram’s reviews look “mixed” because people treat it like two totally different products: a casual social messenger and a hardcore privacy app. It is closer to the first.

Where I slightly disagree with @viajeroceleste

They are right that Telegram leans convenience over airtight privacy. I’m a bit less harsh on its spam situation though. If you:

  • Disable “Add by Phone Number” contact syncing
  • Restrict who can add you to groups
  • Turn off “People nearby” and similar discovery stuff

then for most everyday users the spam becomes an occasional annoyance, not a constant flood. If you live inside huge public groups, yeah, it is going to feel like an open marketplace, not a quiet messenger.

What is actually true about privacy and security

Pros

  • Nice feature set: big groups, channels, bots, media, multi device support.
  • Secret Chats use end to end encryption and are reasonably strong from a technical point of view.
  • Good for pseudonymous use: you can hide your number, change handles, and keep your real identity away from randoms.
  • The client apps are pretty solid usability wise, so most people actually use the privacy settings they turn on.

Cons

  • Regular chats and all groups are not end to end encrypted. Telegram’s servers can theoretically read them. That is the biggest gap vs the “privacy app” reputation.
  • Server code is closed. You have to trust their implementation and logging policies. For high risk users, that is a red flag.
  • Big public communities attract scams, spam bots, phishing and fake “support accounts.” You have to stay paranoid about links, giveaways and any request for codes.
  • Secret Chats are limited: no multi device sync, no groups, and if you switch phones you lose them.

When using Telegram is probably “safe enough”

  • Casual chatting where embarrassment would suck but not ruin your life.
  • Hobby communities, game groups, general fandom, file sharing.
  • As long as you are fine with the idea that your messages live on someone else’s servers and could, in theory, be accessed by the company or compelled by a state.

When you really should not rely on Telegram

  • Activism in hostile countries
  • Whistleblowing, investigative journalism, sensitive source protection
  • Anything where exposure could get you jailed, fired, or physically harmed

For those cases, tools like Signal or more specialized options are better fits.

If you decide to keep using Telegram, treat it like a powerful, convenient social messenger with decent privacy features, not like a bulletproof vault. Your threat model matters more than the marketing, and that is the piece most reviews gloss over.