This document discusses data safe havens and how they could potentially be incorporated into the European Open Science Cloud (EOSC) to enable research using sensitive data. It describes how data safe havens provide a secure environment for working with medical, social, and other restricted data according to national information governance policies. The document then outlines the Caldicott framework for governing health data research in the UK, as well as specific examples like the Farr Institute and NHS Scotland's approach. It discusses how data linkage projects are currently conducted securely in Scotland's national safe haven. Finally, it raises challenges around harmonizing different countries' information governance policies and ensuring the right support services and standards are in place to enable this kind of research at a European level