The rapid advancements in Information and Communication Technologies (ICTs) have been greatly changing our life, with clear societal and economic benefits. Mobile technology, Cloud, Big Data, Internet of things, services and technologies are becoming more and more pervasive and conveniently accessible, towards to the realization of a 'smart' society. At the heart of this evolution is the ability to collect, analyze, process and share an ever increasing amount of data, to extract knowledge for offering personalized and advanced services. A major concern, and potential obstacle, towards the full realization of such evolution is represented by security and privacy issues. As a matter of fact, the (actual or perceived) loss of control over data and potential compromise of their confidentiality can have a strong detrimental impact on the realization of an open framework for enabling collection, processing, and sharing of data, typically stored or processed by external cloud services. In this talk, I will illustrate some security and privacy issues arising in the emerging scenarios, addressing problems related to guaranteeing confidentiality and integrity of data stored or processed by external providers, ensuring access privacy, regulating and controlling access to data in the cloud, and performing queries on protected data.