Fix lowercase normative language for PII safeguards.

Author: msporny

index.html

@@ -5864,9 +5864,10 @@ <h3>Data Theft</h3>
 manage the status and revocation of those credentials. Similarly,
 [=issuers=] are advised to avoid the practice of creating publicly
 resolvable credentials that include personally identifiable information
-(PII) or other sensitive data. Instead, a preference should be shown
-for credentials that are safeguarded by robust access control measures,
-ensuring that they remain inaccessible to unauthorized entities.
+(PII) or other sensitive data. Software implementers are advised 
+to safeguarded [=verifiable credentials=] using robust consent 
+and access control measures, ensuring that they remain 
+inaccessible to unauthorized entities.
         </p>
         <p>
 [=Holders=] are advised to use implementations that appropriately