Cloud-Edge-Internet of Things (IoT) applications process large amounts of sensitive data which need to be protected against unauthorized access, a wide array of (internal and external) attackers and even honest but curious Cloud and Edge providers. Hence, we propose a solution for privileged access management to sensitive data enforcing rich and expressive Access Control (AC) policies while also providing strong guarantees of confidentiality and integrity through advanced and robust cryptography. We then implement our solution in an open-source tool and present a preliminary performance evaluation.