Discretionary Access Control (DAC) is a type of access control system where the owner of the protected system, data, or resource sets policies defining which users or groups can access specific resources. In this model, access to resources is granted based on the identity of users and the groups to which they belong.