DPDP is a watered down version of GDPR and is not as broad with its definition of personal data. Also for a privacy act, it does not have any directives on pseudonymization. But the worst part of DPDP is it makes it illegal for users to provide false information irrespective whether there is an intent to commit fraud. The jury is out whether one can be prosecuted for using an alias online or providing a fake location to an app.