Privacy Policy

The person responsible within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

OneLife GmbH
Krefelder Straße 670
41066 Mönchengladbach

Telefone: +49 2161 990 94 – 0
[email protected]

We have appointed as data protection officer:

activeMind AG
Technologie- und Managementberatung
Potsdamer Str. 3
80802 München

[email protected]

Information concerning the OneLife App

We provide you with an app that you can download from the Apple App Store or Google Play Store on your mobile device.

When the app is downloaded, the information required for this is transferred to the Apple App Store or Google Play Store. These are in particular the username, email address and customer number of your Google or Apple account, time of download, serial number of the device (IMEI), mobile phone number (MSISDN), MAC address for WLAN use and the unique number of the network subscriber (IMSI) or your Apple ID.

Setup of the App or the Air Purifier

When setting up a OneLife air purifier, the app may ask for authorization to switch on and use Bluetooth. The authorization for the Bluetooth functionality of your device is only used to transfer the WiFi access data you provided to the air purifier so that it can join the network. No further data is transmitted and the technology is not used for location or identification purposes.

If you do not agree to use Bluetooth, you will not be able to set up an air purifier!

An air purifier that has already been set up can be used to its full extent without access to the Bluetooth function of your device.

Control of the Air Purifier

To be able to control our air purifier with the app, connect the air purifier to your WiFi. As soon as there is a WLAN connection from the controller to your router, the controller connects to our server in order to implement services such as updates or voice control.

The processing of the data takes place with regard to the initiation, implementation or termination of a contractual relationship (Art. 6 Para. 1 lit. b GDPR).

Our servers are hosted on Amazon AWS in Frankfurt am Main, Germany. When connecting, data (such as the IP address) are stored and processed by Amazon asour processor.

The provision of the aforementioned personal data is voluntary. However, updates are not possible without the IP address.

Voice Control

Voice controls using voice assistants are based on special software from the respective provider. They offer their voice assistants as a service. So that the control of the air purifier can be used by as many people as possible, it works together with several voice control services. The voice control service almost always works according to the same principle. If the user makes a request, it will be processed and then forwarded to our server. This delegates them to one of our systems. For example, the question of the weather ends up in a weather application. 

So-called skills from Amazon Alexa or actions from Google Home are used for this. The skills or actions created by us at the provider, as our contract processors, ensure that your voice commands are passed on to your control system. We only exchange a pseudonymised “token” with the provider, which is responsible for identification between your Google or Amazon account and your system. We do not receive the data of the voice commands or their content and therefore do not save them.  

Our app works with the following voice control services: 

  • Amazon Alexa 
  • Google Home  

Your data will be transmitted to a third country. As a guarantee, Services LLC (410 Terry Avenue N Seattle, WA 98109-5210 United States) and Google LLC (1600 Amphitheater Parkway, Mountain View, California 94043) have submitted a Privacy Shield certificate.

The processing of the data takes place in relation to the implementation of a contractual relationship (Art. 6 Para. 1 lit. b GDPR).

The provision of your personal data is voluntary. Voice control cannot be carried out without your information.

By activating the voice control for the app in your Google Home or Amazon Alexa account, you give your consent (Art. 6 Para. 1 lit a GDPR) to the processing of your personal data for the purpose of using the voice control for the app. Please check whether you agree to the data protection conditions of Google or Amazon and when configuring the Google Home app or Amazon Alexa app you can give or withdraw your consent.

Remote Control

You have the option of controlling your system outside of your WLAN. To do this, you need to create an account in the app. The user administration is done for us by Okta Inc. (100 First Street, San Francisco California 94105, USA) as our processor. The personal data you provide here to register an account will be processed and stored by Okta Inc. and OneLife GmbH. The authentication between Okta Inc. and the system is comparable to Spotify® in connection with Facebook®, where you can log into Spotify® with your Facebook® login data.

With this registration process, the registration data or personal data are not exchanged directly between Okta Inc. and OneLife GmbH, but only pseudonymised tokens.

The processing of the data takes place with regard to the initiation, implementation or termination of a contractual relationship (Art. 6 Para. 1 lit. b GDPR).

Your data will be transmitted to a third country. As a guarantee, we have signed standard contractual clauses with Okta Ink.

The provision of your personal data is voluntary. Without the data, however, no account can be created and the system cannot be used outside of your WLAN.


We have taken numerous technical and organizational measures to protect the app from manipulation and unauthorized access.

The service providers working for us are obliged to comply with the applicable data protection laws.

Our security precautions are subject to a constant improvement process and our data protection declarations are constantly being revised. Please make sure that you have the latest version.

Your rights

You can exercise the following rights or ask general data protection questions at any time at [email protected]:

  • Information about your data stored by us and their processing (Art. 15 GDPR),
  • Correction of incorrect personal data (Art. 16 GDPR),
  • Deletion of your data stored by us (Art. 17 GDPR),
  • Restriction of data processing if we are not yet allowed to delete your data due to legal obligations (Art. 18 GDPR),
  • Objection to the processing of your data by us (Art. 21 GDPR) and
  • Data portability, provided you have consented to the data processing or have concluded a contract with us (Art. 20 GDPR).

Right to object (Art. 21 GDPR): You have the right, for reasons that arise fromyour particular situation, to object at any time to the processing of personal data relating to you, which is based on Art. 6 Para. 1 lit.f GDPR (data processing basedon a balancing of interests) takes place, to file an objection; this also applies to profiling based on this provision within the meaning of Art. 4 No. 4 GDPR. If you object, we will no longer process your personal data unless we can prove compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

If you have given us your consent, you can revoke it at any time with effect for the future.

You can contact a supervisory authority with a complaint at any time, e.g. to the responsible supervisory authority of the federal state of your place of residence or to the authority responsible for us as the responsible body. A list of the supervisory authorities (for the non-public area) with addresses can be found at:

Change of the Privacy Policy

We reserve the right to adapt this data protection declaration so that it always complies with current legal requirements or to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection declaration will then apply to your next visit. The currentversion of the data protection declaration can be found at