The agent policy layer defines what an agent is allowed to do and under what conditions. It can include access control, tool permissions, escalation rules, safety policies, budget limits, human approval steps, and deployment rules.
Policies should be explicit and testable. If a support agent is not allowed to issue refunds over a threshold, that rule should be encoded in the policy layer and covered by evals, not buried in a prompt sentence.