A trust policy is a JSON policy document that defines which entities (like users, roles, or AWS services) can assume a role. It is specified when creating or updating an IAM role. The trust policy allows the role to be assumed by specified AWS accounts or services.