No. If you have any of those features enabled Email obfuscation, Server-side Excludes and Automatic HTTPS Rewrites as well as you have an invalid HTML markup. Per their blog post it is 0.00003% of the total requests.
I thought those were the conditions that caused PII to be included in the HTML response, but the PII could come from any customer as it's a buffer overrun situation. Damn this is confusing