Verify the Authenticity of a Signed Document: the DUER

The Unique Risk Assessment Document (DUER) is a cornerstone of compliance in occupational health and safety in France. Established by Decree No. 2001-1016 of 5 November 2001, it is mandatory for any business from the first employee onwards. However, its legal value in the event of inspection by the Labour Inspectorate, accident or dispute depends largely on its traceability and the authenticity of the signatures that validate it. How can you ensure that a digitally signed DUER has not been altered after signature? What tools and methods allow you to verify this authenticity? This article guides you step by step, from technical fundamentals to organisational best practices.

Why is the authenticity of the DUER signature critical?

Legal and regulatory stakes

The DUER is not an ordinary administrative document. In the event of a workplace accident, occupational illness or employment dispute, it may be submitted as evidence of the employer's prevention policy. The Labour Code (articles L.4121-1 and following) imposes on the employer an obligation of safety of result, and the DUER is the formal trace of his assessment.

An unverifiable or altered electronic signature can lead to:

• Nullity of the document as evidence before a court;
• Administrative sanctions that can reach €3,750 in fines per uncovered employee;
• Criminal liability of the business owner in case of serious accident.

Since Law No. 2021-1018 of 2 August 2021 (Occupational Health Law), the updating of the DUER must be more frequent in companies with 11 or more employees, and its retention period is now extended to 40 years. This long period strengthens the imperative of a robust and verifiable electronic signature over time.

The difference between scanned signature and qualified electronic signature

Many HR or HSE managers believe that applying a scanned handwritten signature to a PDF is sufficient. This is not the case. A scanned signature image provides no document integrity guarantee: the file can be modified afterwards without leaving any detectable trace.

An electronic signature compliant with the eIDAS Regulation, on the other hand, is based on a cryptographic mechanism that irreversibly links the signer's identity to the document content at a specific moment. Any subsequent modification, however minor — an added space, a changed digit — invalidates the signature and triggers an alert when verified.

The electronic signature glossary distinguishes three levels recognised by eIDAS: simple electronic signature (SES), advanced (AES) and qualified (QES). For a document as sensitive as the DUER, the advanced level is recommended as a minimum, with the qualified level being preferable for companies subject to frequent inspections.

Concrete methods to verify the authenticity of a signed DUER

Verification via native PDF reader

The most accessible method is to open the document in Adobe Acrobat Reader (free version) or a compatible PDF reader. When a compliant electronic signature is present, a signature panel displays automatically. It indicates:

1. The signer's identity: name, surname, organisation and certificate used;
2. Date and time of signature, timestamped by cryptographic timestamping;
3. Integrity status: "The signature is valid" or "The document was modified after the signature";
4. The certificate trust chain: validated by a recognised certification authority.

This verification is immediate and requires no subscription. It is, however, limited: if the certificate of the issuing authority is not in the software's trust list (such as the EUTL list — European Union Trusted Lists), the signature may appear as "unverified" even if it is technically valid.

Verification via online validation services

The European Commission provides the DSS Demo Tools service (accessible on ec.europa.eu), which allows you to upload a signed document and obtain a validation report compliant with the ETSI EN 319 102 standard. This service:

• Verifies compliance with XAdES, CAdES, PAdES and JAdES formats;
• Checks the validity of the certificate at the time of signature via OCSP or CRL protocols;
• Generates a JSON or PDF report detailing each validation step.

There are also private services offered by qualified trust service providers (QTSP) listed on national trust lists. In France, ANSSI publishes the list of accredited QTSPs. Using one of these services to validate a contested DUER in litigation provides significantly greater probative weight.

Verification via the original signature platform

If the DUER was signed via a SaaS solution like Certyneo, verification is even more straightforward. Each signed document generates a signature certificate (also called an audit report or signature trail) that archives:

• The IP address and session identifier of the signer;
• The SHA-256 cryptographic hash of the original document;
• The qualified RFC 3161 timestamping;
• The identity evidence used (email, SMS OTP, or even eIDAS strong authentication).

This report is itself electronically signed by the service provider, making it unfalsifiable and directly usable as evidence in court. The electronic signature solution for businesses Certyneo incorporates this mechanism natively for all documents, including DUERs.

Best practices for securing DUER signature and retention

Choosing the right signature level based on risk profile

The selection of the signature level should not be left to chance. For a DUER, here is the recommended reasoning:

| Context | Recommended level | Justification | |---|---|---| | Micro-enterprise < 10 employees, low-risk activity | Advanced signature (AES) | Balance between cost and probative value | | SME, industrial or construction sector | Advanced signature with QSCD certificate | High eIDAS compliance | | Large enterprise, healthcare or chemical sector | Qualified signature (QES) | Value equivalent to handwritten signature |

For healthcare sector enterprises, electronic signature in healthcare meets additional regulatory constraints (HDS, medical GDPR) that systematically justify the use of qualified signature.

Timestamping and long-term archiving

Since the Occupational Health Law requires retention of the DUER for 40 years, the question of signature life duration becomes concretely relevant. A signature certificate has a limited validity period (generally 1 to 3 years). Beyond this period, the trust chain can be broken.

The solution is the long-term probative value archiving service (electronic archiving service or EAS), combined with long-term timestamping according to the ETSI EN 319 122 standard. This mechanism, sometimes called LTV (Long Term Validation), periodically re-timestamps the document by adding additional integrity proofs, guaranteeing its verifiability for the entire legal duration.

Do not confuse archiving with storage: a simple file server or cloud drive does not constitute probative value archiving. Only a system guaranteeing integrity, readability and access traceability meets legal requirements.

Verification process during updates

The DUER must be updated at least once a year, and whenever significant changes to working conditions occur. Each new version must be distinguished from the previous one and be subject to a new signature. A rigorous process includes:

1. Explicit versioning: version number, effective date, list of changes made;
2. Signing of the new version by the HSE manager and, where applicable, by the employee representative (CSE);
3. Retention of all previous versions in the EAS, accessible read-only;
4. Systematic verification of the integrity of the current version before sharing with the Labour Inspectorate or occupational health services.

Automating these steps via a platform like Certyneo significantly reduces the risk of human error and guarantees continuous process compliance. To measure the return on investment of such a solution, the electronic signature ROI calculator allows you to estimate gains based on your organisation's size.

Legal framework applicable to DUER signature and verification

Foundational texts in labour law

The obligation to establish a Unique Document of Professional Risk Assessment (DUERP) stems from article L.4121-1 of the Labour Code, which imposes on the employer the obligation to transcribe and update the results of risk assessment. Decree No. 2001-1016 of 5 November 2001 established this formal obligation. Law No. 2021-1018 of 2 August 2021 to strengthen occupational health prevention extended retention obligations to 40 years and introduced requirements for dematerialised filing with occupational health services for companies with at least 150 employees.

Legal value of electronic signature

Article 1366 of the Civil Code establishes the principle: "Electronic writing has the same probative force as writing on paper, provided that the person from whom it emanates can be properly identified and that it is established and retained in conditions such as to guarantee its integrity." Article 1367 clarifies that the electronic signature "consists in the use of a reliable identification process guaranteeing its link with the act to which it is attached".

The eIDAS Regulation No. 910/2014 of the European Parliament and Council establishes the European framework of trust for electronic transactions. It defines three levels of signatures (simple, advanced, qualified) and establishes equivalence between qualified electronic signature and handwritten signature in article 25§2. Advanced signature, while not benefiting from this legal presumption, remains admissible as a method of proof under the principle of non-discrimination in article 25§1.

Technical reference standards

The formats for electronic signature recognised for PDF documents are defined by the standards ETSI EN 319 132 (XAdES), ETSI EN 319 122 (CAdES) and ETSI EN 319 142 (PAdES). For long-term validation, the standard ETSI EN 319 102 defines validation algorithm procedures compliant with eIDAS.

Qualified electronic timestamping is governed by article 41 of eIDAS Regulation and the RFC 3161 standard of the IETF, guaranteeing a date certain that can be enforced against third parties.

Personal data protection

The DUER contains personal data (employee identities, information on their health and safety). Its processing is subject to the GDPR Regulation No. 2016/679. Electronic signature itself involves processing of signer identity data. The employer, as data controller, must ensure that the signature provider is a GDPR-compliant data processor with a DPA (Data Processing Agreement) compliant with article 28 of the GDPR.

Risks in case of non-compliance

The absence of a DUER or a DUER whose signature is not enforceable exposes the employer to a fine of €3,750 (5th class of misdemeanour) per infringement found. In case of serious workplace accident, the non-enforceability of the DUER may lead to recognition of the employer's gross negligence, resulting in increased compensation to the victim and a clawback action by CPAM.

Concrete use scenarios

An industrial subcontractor facing a Labour Inspectorate inspection

A small industrial enterprise with 85 employees, operating in the manufacture of metal parts, is subject to an unannounced visit by the Labour Inspectorate following a machinery accident. The inspector asks to review the DUER in force on the date of the accident. The HSE manager presents a PDF file electronically signed via the company's signature platform.

Thanks to the audit certificate attached to the document, the inspector can verify in real time: the date and time of signature (prior to the accident), the signer's identity (the authorised production director), document integrity (intact SHA-256 hash), and signature level compliance (advanced with qualified certificate). The company is able to demonstrate that the risk was identified and corrective measures had been planned. This file avoids the qualification of gross negligence. According to data from the CNAM annual report on accident rates, companies with robust documentary traceability reduce their exposure to CNAM clawback actions by 30 to 45%.

An HR consultancy managing multi-client DUERs

An HR consultancy firm of 18 employees advises some forty SME and micro-enterprise clients in the drafting and annual updating of their DUERs. Until then, documents were sent by email as unsigned PDFs, then manually signed and returned as scanned copies.

After migration to a SaaS electronic signature solution, each DUER is signed online by the client's executive in less than 3 minutes. The consultancy has a centralised dashboard allowing it to verify at any time the status of each document: signed, timestamped, archived. If a client has a question about the validity of a previous version, authenticity verification takes less than 30 seconds. The time spent on reminders and document management has decreased by approximately 60%, according to comparable sector benchmarks published by HR consultancy associations.

A group of healthcare facilities managing multi-year DUERs

A private hospital group of approximately 600 beds, bringing together several healthcare facilities and nursing homes, must manage specific DUERs for each of its sites, including chemical, biological and psychosocial risks. The legal retention period of 40 years and the multiplicity of signatories (site directors, occupational physicians, CSE representatives) make oversight particularly complex.

The group deploys a qualified electronic signature solution with probative value archiving and long-term timestamping. Each version of the DUER is cryptographically sealed and automatically re-timestamped every 3 years to maintain the trust chain. In the event of an ARS audit or litigation, any historical version can be extracted with its complete validation report. This organisation has reduced by nearly 70% the time to prepare files during external inspections, compared to the old hybrid paper-digital archiving system.

Conclusion

Verifying the authenticity of a signed document for a Unique Risk Assessment Document is not an optional formality: it is a legal and organisational necessity. Between the obligations arising from the Labour Code, the 40-year retention period imposed since 2021, and the liability issues in the event of accident, only robust electronic signature — accompanied by reliable verification tools — guarantees the full probative value of your DUER.

Whether you go through a PDF reader, a European validation service or directly through your signature platform, the key is to integrate this verification into a documented and reproducible process.

Certyneo allows you to sign, verify and archive your DUERs in full eIDAS compliance, with a complete audit trail and integrated probative value archiving. Create your free account on Certyneo and secure the legal value of your prevention documents today.