The Australian Privacy Commissioner ruled that Cupid Media Pty Ltd breached the Privacy Act following a data breach which saw over 40 million customer records exposed. The company, which operates over 35 niche websites, was investigated after members full names, dates of birth, email addresses, and passwords were found on a server operated by hackers. The investigation was concluded that the company had failed to take reasonable steps to secure personal information it held Cupid was told its patch management policy and implementation of security software was sufficient.”]