diff --git a/proposals/1946-secure_server-side_storage.md b/proposals/1946-secure_server-side_storage.md
index 832144d1..4c5f9b4d 100644
--- a/proposals/1946-secure_server-side_storage.md
+++ b/proposals/1946-secure_server-side_storage.md
@@ -201,7 +201,7 @@ devices that it did not send an `m.secret.request` event to.
 
 Clients MUST ensure that they only share secrets with other devices that are
 allowed to see them.  For example, clients SHOULD only share secrets with
-devices that are verified and MAY prompt the user to confirm sharing the
+the user’s own devices that are verified and MAY prompt the user to confirm sharing the
 secret.
 
 If a feature allows secrets to be stored or shared, then for consistency it