--- title: Trust Framework description: Use the Trust Framework to define the building blocks used in policies and access control decisions. component: pingone page_id: pingone:authorization_using_pingone_authorize:p1az_trust_framework canonical_url: https://docs.pingidentity.com/pingone/authorization_using_pingone_authorize/p1az_trust_framework.html revdate: April 29, 2026 --- # Trust Framework The PingOne Authorize **Trust Framework** is where you define the building blocks used in policies and access control decisions. The **Trust Framework** provides an enterprise-wide view of your data and service ecosystem. It's where your organization's technical personnel capture definitions for digital assets, services, and users across all domains in your organization. ![Screen capture showing the Attributes tab in the Trust Framework.](_images/p1-az-trust-framework.png) When you define these resources with business-friendly names, policy authors can use them in policies without worrying about how the underlying information is retrieved and populated. Organize elements in the **Trust Framework** hierarchically in tree structures. You can branch the tree for each type of element up to 20 levels deep. | | | | - | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | | You can define up to 4000 elements in each environment. This limit includes attributes, services, named conditions, named processors, and policy elements. System-owned objects don't count toward this limit. Learn more about PingOne Authorize limits in [PingOne standard platform limits](../getting_started_with_pingone/p1_platform_limits.html). |