Basically, a new encryption key is created for each conversation, securely exchanged between the ends, and both ends use that unique key. As a result, nobody in the middle, including Wickr themselves can decrypt the messages.

Wickr also strips all the metadata (who, when, etc.) from stuff passing through their servers so they have no records of what happened. If someone subpoenas them they literally don’t have the data.