Admittedly, that is speculation. I speculate that the reason we have more breach reporting is not because there are more breaches but because there is a greater awareness to report.
The reason we speculate in that direction is this. When we look at the challenges in protecting personal information, it was always there; I mean, it is quite something. However, the awareness towards the preciousness, so to speak, of personal information has really increased, and the demands for accountability on that are clearly increasing.
That is what makes us think that if we are seeing a greater number of notifications, it's because organizations are more and more aware of the moral obligation—not necessarily legal, because there is no legal mandatory breach notification—to notify and that notification is essential to help the individuals concerned to protect themselves should it be necessary.
For example, when SIN numbers or credit card numbers have been exposed, then obviously the data holder who has suffered the breach must inform individuals so that they can take the measures necessary to protect themselves.