Verifying the Authenticity of a Signed Document: the DUER

The Unique Risk Assessment Document (DUER) is a cornerstone of compliance in occupational health and safety in France. Established by Decree No. 2001-1016 of November 5, 2001, it is mandatory for any company with at least one employee. However, its legal value in the event of labor inspection, accident, or dispute rests largely on its traceability and the authenticity of the signatures that validate it. How can you ensure that a digitally signed DUER has not been altered after signature? What tools and methods allow you to verify this authenticity? This article guides you step by step, from technical fundamentals to organizational best practices.

Why the authenticity of the DUER signature is critical

Legal and regulatory stakes

The DUER is not an ordinary administrative document. In the event of a workplace accident, occupational disease, or employment dispute, it can be submitted as evidence of the employer's accident prevention policy. The French Labor Code (Articles L.4121-1 and following) imposes on the employer an obligation of safety of result, and the DUER is the formal trace of its evaluation.

A non-verifiable or altered electronic signature can lead to:

• The nullity of the document as a means of proof before a court;
• Administrative sanctions that can reach 3,750 € in fines per uncovered employee;
• Criminal liability of the company head in case of serious accident.

Since Law No. 2021-1018 of August 2, 2021 (Occupational Health Act), the updating of the DUER must be more frequent in companies with 11 or more employees, and its retention is now extended to 40 years. This long duration reinforces the imperative of a robust and verifiable electronic signature over time.

The difference between scanned signature and qualified electronic signature

Many HR or HSE managers believe that affixing a scanned handwritten signature on a PDF is sufficient. This is not the case. A scanned image signature provides no document integrity guarantee: the file can be modified afterward without leaving a detectable trace.

A electronic signature compliant with the eIDAS regulation, on the other hand, is based on a cryptographic mechanism that irreversibly links the identity of the signer to the content of the document at a specific moment. Any subsequent modification, however minor—an added space, a changed digit—invalidates the signature and triggers an alert upon verification.

The electronic signature glossary distinguishes three levels recognized by eIDAS: simple electronic signature (SES), advanced (AES), and qualified (QES). For a document as sensitive as the DUER, the advanced level is recommended at minimum, with the qualified level being preferable for companies subject to frequent inspections.

Concrete methods for verifying the authenticity of a signed DUER

Verification via native PDF reader

The most accessible method is to open the document in Adobe Acrobat Reader (free version) or a compatible PDF reader. When a compliant electronic signature is present, a signature panel automatically displays. It indicates:

1. The identity of the signer: name, given name, organization, and certificate used;
2. The date and time of signature, timestamped by cryptographic timestamping;
3. The integrity status: "The signature is valid" or "The document was modified after signing";
4. The certificate trust chain: validated by a recognized certification authority.

This verification is immediate and requires no subscription. It is, however, limited: if the certificate of the issuing authority is not in the software's trust list (such as the EUTL — European Union Trusted Lists), the signature may appear as "unverified" even if it is technically valid.

Verification via online validation services

The European Commission provides the DSS Demo Tools service (accessible on ec.europa.eu), which allows you to upload a signed document and obtain a validation report compliant with the ETSI EN 319 102 standard. This service:

• Verifies compliance with XAdES, CAdES, PAdES, and JAdES formats;
• Checks the validity of the certificate at the time of signature via OCSP or CRL protocols;
• Generates a JSON or PDF report detailing each step of the validation.

There are also private services offered by qualified trust service providers (QTSP) listed on national trust lists. In France, ANSSI publishes the list of accredited QTSPs. Using one of these services to validate a disputed DUER in litigation provides significantly greater probative force.

Verification via the original signing platform

If the DUER was signed via a SaaS solution like Certyneo, verification is even more direct. Each signed document generates a signature certificate (also called audit report or signature trail) that archives:

• The IP address and session identifier of the signer;
• The SHA-256 cryptographic hash of the original document;
• The qualified RFC 3161 timestamp;
• The identity proofs used (email, SMS OTP, or even strong eIDAS authentication).

This report is itself electronically signed by the service provider, making it unfalsifiable and directly usable as legal evidence. The electronic signature solution for businesses Certyneo integrates this mechanism natively for all documents, including DUERs.

Best practices for securing DUER signature and retention

Choosing the right signature level based on risk profile

The selection of the signature level should not be left to chance. For a DUER, here is the recommended reasoning:

| Context | Recommended Level | Justification | |---|---|---| | Micro-enterprises < 10 employees, low-risk activity | Advanced signature (AES) | Cost/probative value balance | | SMEs, industrial or construction sector | Advanced signature with QSCD certificate | High eIDAS compliance level | | Large company, healthcare or chemical sector | Qualified signature (QES) | Value equivalent to handwritten signature |

For companies in the healthcare sector, electronic signature in healthcare meets additional regulatory constraints (HDS, medical GDPR) that systematically justify the use of qualified signature.

Timestamping and long-term archiving

Since the Occupational Health Act requires DUER retention for 40 years, the question of signature lifespan becomes concrete. A signature certificate has a limited validity period (generally 1 to 3 years). After this period, the trust chain may be broken.

The solution is the archiving service with probative value (electronic archiving service or EAS), combined with long-term timestamping according to ETSI EN 319 122 standard. This mechanism, sometimes called LTV (Long Term Validation), periodically retimestamps the document by adding additional integrity proofs, guaranteeing its verifiability throughout the entire legal duration.

Do not confuse archiving with storage: a simple file server or cloud drive does not constitute archiving with probative value. Only a system guaranteeing integrity, readability, and traceability of access satisfies legal requirements.

Verification process during updates

The DUER must be updated at least once per year, and each time there is a significant change in working conditions. Each new version must be distinguished from the previous one and subject to a new signature. A rigorous process includes:

1. Explicit versioning: version number, effective date, list of changes made;
2. Signature of the new version by the HSE manager and, depending on the case, by the employee representative (CSE);
3. Retention of all previous versions in the EAS, accessible as read-only;
4. Systematic verification of the integrity of the current version before sharing it with the Labor Inspection or occupational health services.

Automating these steps via a platform like Certyneo significantly reduces the risk of human error and guarantees continuous process compliance. To measure the return on investment of such a solution, the electronic signature ROI calculator allows you to estimate gains based on your organization's size.

Legal framework applicable to DUER signature and verification

Foundational texts in labor law

The obligation to establish a Unique Occupational Risk Assessment Document (DUERP) stems from Article L.4121-1 of the French Labor Code, which imposes on the employer the transcription and updating of the results of risk assessment. Decree No. 2001-1016 of November 5, 2001 established this formal obligation. Law No. 2021-1018 of August 2, 2021 to strengthen occupational health prevention extended retention obligations to 40 years and introduced requirements for dematerialized filing with occupational health services for companies with at least 150 employees.

Legal value of electronic signature

Article 1366 of the French Civil Code establishes the principle: "Electronic writing has the same probative force as writing on paper, provided that the person from whom it emanates can be duly identified and it is established and retained in conditions of a nature to guarantee its integrity." Article 1367 specifies that electronic signature "consists in the use of a reliable identification process guaranteeing its link with the act to which it attaches."

The eIDAS Regulation No. 910/2014 of the European Parliament and Council establishes the European framework of trust for electronic transactions. It defines three levels of signatures (simple, advanced, qualified) and establishes equivalence between qualified electronic signature and handwritten signature in Article 25§2. Advanced signature, while not benefiting from this legal presumption, remains admissible as a mode of proof under the non-discrimination principle of Article 25§1.

Technical reference standards

The recognized electronic signature formats for PDF documents are defined by ETSI EN 319 132 (XAdES), ETSI EN 319 122 (CAdES), and ETSI EN 319 142 (PAdES) standards. For long-term validation, the ETSI EN 319 102 standard defines validation algorithm procedures compliant with eIDAS.

Qualified electronic timestamping is governed by Article 41 of eIDAS Regulation and RFC 3161 of the IETF, guaranteeing the certain date enforceable against third parties.

Data protection

The DUER contains personal data (employee identities, information about their health and safety). Its processing is subject to the GDPR Regulation No. 2016/679. Electronic signature itself involves processing of signer identity data. The employer, as data controller, must ensure that the signature service provider is a GDPR-compliant data processor with a DPA (Data Processing Agreement) compliant with Article 28 of GDPR.

Risks in case of non-compliance

The absence of a DUER or a DUER whose signature is not enforceable exposes the employer to a fine of 3,750 € (5th class misdemeanor) per offense found. In case of serious workplace accident, the non-enforceability of the DUER may lead to recognition of the employer's inexcusable fault, resulting in increased compensation for the victim and a subrogation action by the CPAM.

Concrete usage scenarios

An industrial service provider facing labor inspection

A 85-employee industrial SME, operating in the manufacture of metal parts, is subject to an unannounced labor inspection visit following a machinery accident. The inspector asks to review the DUER in force at the time of the accident. The HSE manager presents a PDF file electronically signed via the company's signature platform.

Thanks to the audit certificate attached to the document, the inspector can verify in real time: the date and time of signature (prior to the accident), the identity of the signer (the authorized production director), the integrity of the document (intact SHA-256 hash), and the compliance of the signature level (advanced with qualified certificate). The company is able to demonstrate that the risk was identified and that corrective measures had been planned. This record avoids the qualification of inexcusable fault. According to data from CNAM's annual report on accident rates, companies with robust documentary traceability reduce their exposure to CNAM subrogation actions by 30 to 45%.

An HR consulting firm managing multi-client DUERs

An HR consulting firm of 18 employees assists about forty SMEs and small companies in drafting and annually updating their DUERs. Until then, documents were sent by email as unsigned PDFs, then manually signed and returned as scans.

After migration to a SaaS electronic signature solution, each DUER is signed online by the client manager in less than 3 minutes. The firm has a centralized dashboard allowing verification at any time of the status of each document: signed, timestamped, archived. If a client has a question about the validity of a previous version, authenticity verification takes less than 30 seconds. The time devoted to follow-ups and document management has decreased by approximately 60%, according to comparable sector benchmarks published by HR consulting associations.

A hospital group managing multi-year DUERs

A private hospital group of approximately 600 beds, comprising several healthcare facilities and nursing homes, must manage specific DUERs for each of its sites, including chemical, biological, and psychosocial risks. The legal 40-year retention period and the multiplicity of signatories (site directors, occupational physicians, CSE representatives) make monitoring particularly complex.

The group deploys a qualified electronic signature solution with archiving with probative value and long-term timestamping. Each DUER version is cryptographically sealed and automatically retimestamped every 3 years to maintain the trust chain. In case of ARS audit or litigation, any historical version can be extracted with its complete validation report. This organization reduced by nearly 70% the time spent preparing files for external inspections, compared to the previous hybrid paper-digital archiving system.

Conclusion

Verifying the authenticity of a signed document for a Unique Risk Assessment Document is not an optional formality: it is a legal and organizational necessity. Between the obligations arising from the French Labor Code, the 40-year retention period imposed since 2021, and the liability stakes in case of accident, only a robust electronic signature—accompanied by reliable verification tools—guarantees the full probative value of your DUER.

Whether you go through a PDF reader, a European validation service, or directly through your signature platform, the essential thing is to integrate this verification into a documented and reproducible process.

Certyneo allows you to sign, verify, and archive your DUERs in full eIDAS compliance, with a complete audit trail and integrated archiving with probative value. Create your free account on Certyneo and secure the legal value of your prevention documents today.