Security Policies can be used within a project to give permissions, basing on complex element of the user profile within the application. Permissions can be given to certain content types within the project, basing on mixins, relations, or user attributes.