Verify the Authenticity of a Signed Document: The DUER

The Unique Risk Assessment Document (DUER) is a cornerstone of compliance in occupational health and safety in France. Established by decree n°2001-1016 of 5 November 2001, it is mandatory for any enterprise from the first employee. However, its legal value in the event of a Labour Inspectorate inspection, accident or dispute rests largely on its traceability and the authenticity of the signatures that validate it. How can you ensure that a digitally signed DUER has not been altered after signature? What tools and methods allow you to verify this authenticity? This article guides you step by step, from technical fundamentals to organisational best practices.

Why is the authenticity of the DUER signature critical

The legal and regulatory stakes

The DUER is not an ordinary administrative document. In the event of a workplace accident, occupational disease or employment tribunal dispute, it may be submitted as evidence of the employer's prevention policy. The French Labour Code (articles L.4121-1 et seq.) imposes on the employer an obligation of safety of result, and the DUER is the formal trace of its assessment.

An unverifiable or altered electronic signature can lead to:

• The nullity of the document as a means of proof before a court;
• Administrative sanctions that can reach €3,750 in fines per employee not covered;
• Criminal liability of the business owner in the event of a serious accident.

Since law n°2021-1018 of 2 August 2021 (Occupational Health Law), the DUER update must be more frequent in enterprises with 11 or more employees, and its retention is now extended to 40 years. This long duration reinforces the imperative of a robust and verifiable electronic signature over time.

The difference between scanned signature and qualified electronic signature

Many HR or HSE managers believe that affixing a scanned handwritten signature to a PDF is sufficient. This is not the case. A scanned signature image does not guarantee any document integrity: the file can be modified afterwards without leaving a detectable trace.

A electronic signature compliant with the eIDAS regulation, by contrast, is based on a cryptographic mechanism that irrevocably links the signatory's identity to the document's content at a specific moment in time. Any subsequent modification, however slight — a space added, a figure changed — invalidates the signature and triggers an alert upon verification.

The electronic signature glossary distinguishes three levels recognised by eIDAS: simple electronic signature (SES), advanced (AES) and qualified (QES). For a document as sensitive as the DUER, the advanced level is recommended at a minimum, with the qualified level being preferable for enterprises subject to frequent inspections.

The practical methods for verifying the authenticity of a signed DUER

Verification via the native PDF reader

The most accessible method is to open the document in Adobe Acrobat Reader (free version) or a compatible PDF reader. When a compliant electronic signature is present, a signature panel displays automatically. It indicates:

1. The identity of the signatory: name, surname, organisation and certificate used;
2. The date and time of signature, timestamped by cryptographic timestamping;
3. The integrity status: "The signature is valid" or "The document was modified after signing";
4. The certificate's chain of trust: validated by a recognised certification authority.

This verification is immediate and requires no subscription. It is, however, limited: if the certificate of the issuing authority is not in the software's trust list (such as the EUTL — European Union Trusted Lists), the signature may appear as "unverified" even if it is technically valid.

Verification via online validation services

The European Commission provides the DSS Demo Tools service (accessible at ec.europa.eu), which allows you to upload a signed document and obtain a validation report compliant with the ETSI EN 319 102 standard. This service:

• Verifies compliance with XAdES, CAdES, PAdES and JAdES formats;
• Checks the validity of the certificate at the time of signature via OCSP or CRL protocols;
• Generates a JSON or PDF report detailing each validation step.

There are also private services such as those offered by qualified trust service providers (QTSP) listed on national trust lists. In France, ANSSI publishes the list of accredited QTSPs. Using one of these services to validate a contested DUER in a dispute provides significantly greater probative force.

Verification via the original signature platform

If the DUER was signed via a SaaS solution like Certyneo, verification is even more direct. Each signed document generates a signature certificate (also called audit report or signature trail) that archives:

• The signatory's IP address and session identifier;
• The SHA-256 cryptographic hash of the original document;
• The qualified RFC 3161 timestamp;
• The identity proofs used (email, SMS OTP, or even eIDAS strong authentication).

This report is itself electronically signed by the service provider, making it unfalsifiable and directly usable as evidence in court. The electronic signature solution for enterprises Certyneo integrates this mechanism natively for all documents, including DUERs.

Best practices for securing the signature and retention of the DUER

Choosing the right signature level according to risk profile

The selection of the signature level should not be left to chance. For a DUER, here is the recommended reasoning:

| Context | Recommended Level | Justification | |---|---|---| | Micro-enterprises < 10 employees, low-risk activity | Advanced signature (AES) | Cost/probative value balance | | SMEs, industrial or construction sector | Advanced signature with QSCD certificate | High eIDAS compliance level | | Large enterprise, health or chemical sector | Qualified signature (QES) | Value equivalent to handwritten signature |

For enterprises in the health sector, electronic signature in healthcare complies with additional regulatory constraints (HDS, medical GDPR) that systematically justify recourse to qualified signature.

Timestamping and long-term archiving

The Occupational Health Law requiring the DUER to be retained for 40 years, the question of the lifespan of signatures arises concretely. A signature certificate has a limited validity period (generally 1 to 3 years). Beyond this time, the chain of trust can be broken.

The solution is the long-term probative value archiving service (electronic archiving service or SAE), combined with a long-term timestamp according to the ETSI EN 319 122 standard. This mechanism, sometimes called LTV (Long Term Validation), periodically retimestamps the document by adding additional integrity proofs, guaranteeing its verifiability throughout the legal retention period.

Do not confuse archiving and storage: a simple file server or cloud drive does not constitute long-term probative value archiving. Only a system guaranteeing integrity, readability and traceability of access meets legal requirements.

Verification process during updates

The DUER must be updated at least once a year, and whenever there is a significant change in working conditions. Each new version must be distinguished from the previous one and be subject to a new signature. A rigorous process includes:

1. Explicit versioning: version number, effective date, list of changes made;
2. Signature of the new version by the HSE manager and, where applicable, by the employee representative (CSE);
3. Retention of all previous versions in the SAE, accessible in read-only mode;
4. Systematic verification of the integrity of the current version before any sharing with the Labour Inspectorate or occupational health services.

Automating these steps via a platform like Certyneo significantly reduces the risk of human error and guarantees ongoing process compliance. To measure the return on investment of such a solution, the electronic signature ROI calculator allows you to estimate gains based on your organisation's size.

Legal framework applicable to DUER signature and verification

Founding texts in labour law

The obligation to establish a Unique Professional Risk Assessment Document (DUER) derives from article L.4121-1 of the French Labour Code, which imposes on the employer the requirement to transcribe and update the results of the risk assessment. Decree n°2001-1016 of 5 November 2001 established this formal obligation. Law n°2021-1018 of 2 August 2021 to strengthen occupational health prevention extended retention obligations to 40 years and introduced requirements for dematerialised filing with occupational health services for enterprises with at least 150 employees.

Legal value of electronic signature

Article 1366 of the French Civil Code establishes the principle: "Electronic writing has the same probative force as writing on paper, provided that the person from whom it emanates can be duly identified and that it is established and retained in conditions of nature to guarantee its integrity." Article 1367 clarifies that electronic signature "consists of the use of a reliable identification process guaranteeing its link with the act to which it is attached".

The eIDAS Regulation n°910/2014 of the European Parliament and Council establishes the European framework of confidence for electronic transactions. It defines three levels of signatures (simple, advanced, qualified) and establishes the equivalence between qualified electronic signature and handwritten signature at article 25§2. The advanced signature, without benefiting from this legal presumption, remains admissible as a mode of proof under the non-discrimination principle of article 25§1.

Reference technical standards

The electronic signature formats recognised for PDF documents are defined by standards ETSI EN 319 132 (XAdES), ETSI EN 319 122 (CAdES) and ETSI EN 319 142 (PAdES). For long-term validation, the standard ETSI EN 319 102 defines validation algorithm procedures compliant with eIDAS.

Qualified electronic timestamping is governed by article 41 of the eIDAS Regulation and the standard RFC 3161 of the IETF, guaranteeing the certain date enforceable against third parties.

Personal data protection

The DUER contains personal data (employee identities, information about their health and safety). Its processing is subject to the GDPR Regulation n°2016/679. Electronic signature itself involves processing of signatory identity data. The employer, as the controller, must ensure that the signature service provider is a GDPR-compliant processor with a DPA (Data Processing Agreement) compliant with article 28 of the GDPR.

Risks in case of non-compliance

The absence of a DUER or a DUER whose signature is not enforceable exposes the employer to a fine of €3,750 (5th class of misdemeanour) per infringement found. In the event of a serious workplace accident, the non-enforceability of the DUER can lead to recognition of the employer's unforgivable fault, resulting in increased compensation for the victim and a recourse claim by the social security fund.

Concrete usage scenarios

An industrial service provider facing a Labour Inspectorate inspection

An industrial SME of 85 employees, operating in the manufacture of metal parts, is subject to an unannounced visit by the Labour Inspectorate following a machine accident. The inspector requests to consult the DUER in effect on the date of the accident. The HSE manager presents a PDF file signed electronically via the company's signature platform.

Thanks to the audit certificate attached to the document, the inspector can verify in real time: the date and time of signature (prior to the accident), the identity of the signatory (the authorised production director), the integrity of the document (SHA-256 hash intact), and the compliance of the signature level (advanced with qualified certificate). The enterprise is able to demonstrate that the risk was identified and that corrective measures had been planned. This record avoids qualification as unforgivable fault. According to data from the CNAM annual report on claims, enterprises with robust documentary traceability reduce their exposure to recourse actions by 30 to 45%.

An HR consulting firm managing multi-client DUERs

An HR consulting firm with 18 staff members assists some forty SMEs and micro-enterprises in drafting and annually updating their DUERs. Until then, documents were sent by email in unsigned PDF format, then manually signed and returned scanned.

After migration to a SaaS electronic signature solution, each DUER is signed online by the client manager in less than 3 minutes. The firm has a centralised dashboard allowing it to check at any time the status of each document: signed, timestamped, archived. If a client has a question about the validity of a previous version, authenticity verification takes less than 30 seconds. The time spent on follow-ups and document management has decreased by approximately 60%, according to comparable sector benchmarks published by HR consulting associations.

A group of healthcare facilities managing multi-year DUERs

A private hospital group of approximately 600 beds, bringing together several healthcare facilities and nursing homes, must manage DUERs specific to each of its sites, including chemical, biological and psychosocial risks. The legal 40-year retention period and the multiplicity of signatories (site directors, occupational physicians, CSE representatives) make monitoring particularly complex.

The group deploys a qualified electronic signature solution with long-term probative value archiving and long-term timestamping. Each version of the DUER is cryptographically sealed and automatically retimestamped every 3 years to maintain the chain of trust. In the event of a regional health authority audit or dispute, any historical version can be extracted with its complete validation report. This arrangement has reduced by nearly 70% the time to prepare files during external inspections, compared to the previous hybrid paper-digital archiving system.

Conclusion

Verifying the authenticity of a signed document for a Unique Risk Assessment Document is not an optional formality: it is a legal and organisational necessity. With the obligations arising from the Labour Code, the 40-year retention period imposed since 2021 and the liability stakes in the event of an accident, only a robust electronic signature — accompanied by reliable verification tools — guarantees the full probative value of your DUER.

Whether you use a PDF reader, a European validation service or directly your signature platform, the essential point is to integrate this verification into a documented and reproducible process.

Certyneo allows you to sign, verify and archive your DUERs in full eIDAS compliance, with a complete audit trail and integrated long-term probative value archiving. Create your free Certyneo account and secure today the legal value of your prevention documents.