No secure enclave is needed, the system uses strong cryptography to protect Apple and their database providers from accountability.

I gave a semi-technical description of how private set intersection works here:

https://news.ycombinator.com/item?id=28124716

Assuming they implement it correctly and there are no apple-internal leaks we won't be discovering the content of the database.