For the reason I already specified, you don't want to put HTML inside the database unless you're sure it will only contain HTML.
For instance, let's say my name is
"Chris Völkel", if you store it as HTML in the DB, it will look like:
The problem with this is that you can't use the name anywhere else where it won't be HTML.
For example, your client might ask you to export the DB data into a CSV file. You will end up giving the client HTML inside the CSV file - not ideal, right?
Instead, you should encode the data to HTML when you render it on the web browser:
$data = $_POST['data']; // ... $stmt->bind_param($data);
And later on...